Windows 7, 64bit, macht keine updates mehr. laptop läuft verlangsamt.

smayate · 13.11.2016, 18:15

Ein herzliches Hallo :-)

Erst mal vielen Dank, dass Du/Ihr mir und meinem Laptop hilfst!

Windows 7/64bit, macht keine updates mehr.
Die Einstellung: „automatisch nach updates suchen“ fällt von alleine wieder raus. Und genau das habe ich offenbar sehr lange nicht bemerkt. ("rotwerd")
Nach updates suchen, das dauert und dauert und sucht und sucht, ohne Ergebnis.

Waterfox "hängt" mehrmals täglich, lädt nach einigen Sekunden allerdings von alleine wieder.
Ich benutze waterfox, weil er im jetzigen Zustand meines Laptops dennoch besser läuft als firefox. Und auch weil ich mit firefox nicht in mein e-banking reinkomme, bitdefender macht automatisch eine Umleitung und dann kommt eine Fehlermeldung. Mit waterfox funktionniert e-banking.
Allgemein läuft mein laptop verlangsamt.

Noch zwei Fragen:
-Ich habe 3 USB-Sticks, die ich benutzt habe, und auch weiterhin benutzen möchte. Schliesse ich die 3 USB-Sticks an, vor der log-Analyse und lasse sie drin, bis das System dann sauber ist?
-Das System in Ordnung zu bringen, kann jedoch über mehrere Tage gehen. Fahre ich das System am Abend, wenn ich den laptop nicht mehr brauche, dennoch herunter? Und was mache ich in dieser Zeit mit den USB-Sticks?

Vielen Dank und liebe Grüsse
Patricia

deeprybka · 13.11.2016, 19:55

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...

Bitte arbeite alle Schritte der Reihe nach ab.
Lies die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
Bitte kein Crossposting (posten in mehreren Foren).
Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
Speichere alle unsere Tools auf dem Desktop ab. Link: So ladet Ihr unsere Tools richtig
Poste die Logfiles direkt in Deinen Thread in Code-Tags.
Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.

Los geht's:

Schritt 1

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

smayate · 14.11.2016, 14:47

Hallo lieber Jürgen und vielen Dank:-)

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2016
durchgeführt von Patricia (Administrator) auf HOMEPC (14-11-2016 14:38:16)
Gestartet von C:\Users\Patricia\Desktop
Geladene Profile: Patricia (Verfügbare Profile: Patricia & Gast)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: "C:\Program Files\Waterfox\waterfox.exe" -osint -url "%1")
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vcsFPService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(DeviceVM, Inc.) C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
() C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard ) C:\Program Files\Hewlett-Packard\HPToneControl\HPToneCtl.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Panasonic Corporation) C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(AimerSoft) C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\HPTouchSmartSyncCalReminderApp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Waterfox) C:\Program Files\Waterfox\waterfox.exe


==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [HP Quick Launch] => C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [451072 2010-01-18] (Hewlett-Packard Company)
HKLM\...\Run: [HPToneControl] => C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe [107832 2009-08-19] (Hewlett-Packard )
HKLM\...\Run: [HPWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2009-12-16] (Hewlett-Packard)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-04-06] (Bitdefender)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-12-05] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2016-11-01] (Apple Inc.)
HKLM-x32\...\Run: [HP Envy Guides AutoPlay] => C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe [76584 2010-03-24] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2010-01-25] (EasyBits Software AS)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-10-05] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-09-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [25673776 2016-11-07] (Dropbox, Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [210432 2016-07-05] (Geek Software GmbH)
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Aimersoft\Video Converter Ultimate\DelayPluginI.exe
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2066432 2014-10-31] (AimerSoft)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [111928 2013-05-03] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [LightScribe Control Panel] => C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2010-01-22] (Hewlett-Packard Company)
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-01-15] (Bitdefender)
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [Zoom] => 0
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8944344 2016-09-28] (Piriform Ltd)
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-10-05] (Apple Inc.)
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1166.0618\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1166.0618\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.4724.0224\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.4724.0224\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\RunOnce: [Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: H - H:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {059a1df1-862e-11e2-a1c6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {059a1df3-862e-11e2-a1c6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {059a1df5-862e-11e2-a1c6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {059a1e0b-862e-11e2-a1c6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {059a1e0d-862e-11e2-a1c6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {059a1e12-862e-11e2-a1c6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {825260d5-f41a-11df-aea6-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {a2add5ed-f41b-11df-91f2-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {a2add5f2-f41b-11df-91f2-70f395783aec} - H:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\MountPoints2: {f993b233-fe02-11df-917f-70f395783aec} - G:\Start.exe
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
Lsa: [Notification Packages] DPPassFilter scecli
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2010-05-19] (EasyBits Software Corp.)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.3.0.dll [2016-11-07] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-06-26]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PHOTOfunSTUDIO 9.1 PE.lnk [2014-04-13]
ShortcutTarget: PHOTOfunSTUDIO 9.1 PE.lnk -> C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe (Panasonic Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{047E5E14-C41D-4AC7-A289-074A4E61A1F0}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{4F949C27-2417-4F3F-8223-C5D7BF7F1873}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{DE97E731-56A8-4BEF-8BC4-E7BED60C35D6}: [DhcpNameServer] 192.168.200.240 195.186.4.162

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-1886241858-427757544-3799178666-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCON/12
URLSearchHook: HKLM-x32 -> Standard = {855F3B16-6D32-4fe6-8A56-BBB695989046}
SearchScopes: HKLM-x32 -> {0FEDBE03-54CF-4D2D-925B-547AD8D6FFF6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1886241858-427757544-3799178666-1000 -> {0FEDBE03-54CF-4D2D-925B-547AD8D6FFF6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-01-28] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-08-16] (Microsoft Corporation)
BHO: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30] (DigitalPersona, Inc.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-11-11] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2016-08-09] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-09-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-11] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll => Keine Datei
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-01-28] (Bitdefender)
BHO-x32: HP SimplePass Identity Protection Extension -> {395610AE-C624-4f58-B89E-23733EA00F9A} -> C:\Program Files (x86)\DigitalPersona\Bin\dpotspluginie8.dll [2009-12-30] (DigitalPersona, Inc.)
BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2016-08-09] (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll => Keine Datei
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-01-28] (Bitdefender)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-01-28] (Bitdefender)
Toolbar: HKU\S-1-5-21-1886241858-427757544-3799178666-1000 -> Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-01-28] (Bitdefender)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
Handler: WSAMVCUchrome - Kein CLSID Wert
Handler: WSWSVCUchrome - Kein CLSID Wert

FireFox:
========
FF ProfilePath: C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152 [2016-11-14]
FF Homepage: Mozilla\Firefox\Profiles\la12gp68.default-1433017350152 -> hxxps://swisscows.ch/
FF Extension: (German Dictionary (Switzerland)) - C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\Extensions\de-CH@dictionaries.addons.mozilla.org [2016-04-16]
FF Extension: (Weather Forecast Plus) - C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\Extensions\jid1-aqwHRwQpv3JUMs@jetpack.xpi [2016-09-29]
FF Extension: (Stop AutoPlay Next for YouTube™) - C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\Extensions\jid1-nbzaq9ol2hyY64gGe@jetpack.xpi [2016-08-16]
FF Extension: (ColorfulTabs) - C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2016-10-27]
FF SearchPlugin: C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\searchplugins\qwant.xml [2016-04-17]
FF SearchPlugin: C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\searchplugins\swisscows.xml [2016-04-17]
FF SearchPlugin: C:\Users\Patricia\AppData\Roaming\Mozilla\Firefox\Profiles\la12gp68.default-1433017350152\searchplugins\translateru.xml [2016-04-17]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2016-04-20] [ist nicht signiert]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2016-04-20] [ist nicht signiert]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-02-12] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt
FF Extension: (DigitalPersona Extension) - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt [2010-06-26] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-02-12] [ist nicht signiert]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_207.dll [2016-11-08] ()
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-11] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2009-07-21] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-02-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [] ()
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1886241858-427757544-3799178666-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\Patricia\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2016-02-06] (Zoom Video Communications, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3037424 2016-10-03] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [42096 2016-11-07] (Dropbox, Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [437224 2016-10-27] (Digital Wave Ltd.)
R2 DvmMDES; C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe [338168 2010-02-08] (DeviceVM, Inc.)
R2 EPSON_EB_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE [163840 2007-12-17] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
R2 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE [126464 2007-01-11] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-01-25] (EasyBits Software AS) [Datei ist nicht signiert]
S3 hpdoccardsvc; C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [83240 2010-03-24] (Hewlett-Packard Developement Company, L.P.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 HPWMISVC; C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [20480 2010-01-18] () [Datei ist nicht signiert]
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2010-01-22] (Hewlett-Packard Company) [Datei ist nicht signiert]
S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)
S3 ServiceLayer; C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia) [Datei ist nicht signiert]
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-04-06] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-01-14] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-01-23] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-01-14] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2014-12-15] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2015-01-09] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)
R1 DVMIO; C:\Windows\System32\DRIVERS\dvmio.sys [20056 2010-01-29] (DeviceVM, Inc.)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [132608 2009-12-10] (Huawei Technologies Co., Ltd.)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-04-06] (BitDefender LLC)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)
S3 WsAudio_Device; C:\Windows\System32\drivers\VirtualAudio.sys [31080 2015-02-27] (Wondershare)
S3 wtsmpadap; C:\Windows\System32\DRIVERS\wtsmpadap.sys [56104 2009-07-20] (Swisscom)
S3 WtSmpFlt; C:\Windows\System32\DRIVERS\wtsmpflt.sys [384808 2009-07-20] (Swisscom)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-14 14:38 - 2016-11-14 14:39 - 00038249 _____ C:\Users\Patricia\Desktop\FRST.txt
2016-11-14 14:34 - 2016-11-14 14:38 - 00000000 ____D C:\FRST
2016-11-14 14:32 - 2016-11-14 14:33 - 02411520 _____ (Farbar) C:\Users\Patricia\Desktop\FRST64.exe
2016-11-14 10:40 - 2016-11-14 10:40 - 00000000 ___HD C:\OneDriveTemp
2016-11-11 20:48 - 2016-11-11 20:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-11-09 20:14 - 2016-11-09 20:14 - 00002104 _____ C:\Users\Public\Desktop\Google Earth.lnk
2016-11-09 20:14 - 2016-11-09 20:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2016-11-07 23:49 - 2016-11-07 23:49 - 00075888 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2016-11-07 23:49 - 2016-11-07 23:49 - 00042096 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2016-11-07 15:45 - 2016-11-07 15:45 - 00000000 ____D C:\Users\Public\Documents\sun
2016-11-07 00:33 - 2016-11-07 00:33 - 00001116 _____ C:\Users\Public\Desktop\OpenOffice 4.1.3.lnk
2016-11-07 00:33 - 2016-11-07 00:33 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.3
2016-11-07 00:29 - 2016-11-07 00:29 - 00000000 ____D C:\Users\Patricia\Downloads\OpenOffice 4.1.3 (de) Installation Files
2016-11-07 00:25 - 2016-11-07 00:27 - 171330228 _____ C:\Users\Patricia\Downloads\Apache_OpenOffice_4.1.3_Win_x86_install_de.exe
2016-11-06 23:43 - 2016-11-06 23:43 - 00243520 _____ C:\Users\Patricia\Downloads\Firefox Setup Stub 49.0.2.exe
2016-11-06 23:34 - 2016-11-14 03:15 - 00000000 ____D C:\Users\Patricia\Documents\trojanerboard
2016-11-06 21:10 - 2016-11-06 21:11 - 47079440 _____ (Mozilla) C:\Users\Patricia\Downloads\Waterfox 49.0.2 Setup-1.exe
2016-11-03 22:51 - 2016-11-03 22:51 - 00001713 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-11-03 22:51 - 2016-11-03 22:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-11-03 22:51 - 2016-11-03 22:51 - 00000000 ____D C:\Program Files\iTunes
2016-11-03 22:51 - 2016-11-03 22:51 - 00000000 ____D C:\Program Files\iPod
2016-10-29 08:09 - 2016-10-29 08:09 - 00000385 _____ C:\Users\Gast\AppData\Roaminguser_gensett.xml
2016-10-28 15:50 - 2016-10-28 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2016-10-28 00:46 - 2016-10-28 00:46 - 00000000 ____D C:\Users\Gast\AppData\Roaming\hpqlog
2016-10-28 00:45 - 2016-10-28 00:45 - 00000000 ____D C:\Users\Gast\AppData\Roaming\ATI
2016-10-28 00:45 - 2016-10-28 00:45 - 00000000 ____D C:\Users\Gast\AppData\Local\ATI
2016-10-28 00:44 - 2016-10-28 00:47 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Bitdefender
2016-10-28 00:44 - 2016-10-28 00:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Dropbox
2016-10-28 00:44 - 2016-10-28 00:44 - 00138968 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2016-10-28 00:44 - 2016-10-28 00:44 - 00001381 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-10-28 00:44 - 2016-10-28 00:44 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Vorlagen
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Startmenü
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Lokale Einstellungen
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Eigene Dateien
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Videos
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Anwendungsdaten
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 _SHDL C:\Users\Gast\Anwendungsdaten
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\Documents\Bluetooth-Exchange-Ordner
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Hewlett-Packard
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Local\TouchSmartData
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Local\Panasonic
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Local\Broadcom
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast\AppData\Local\Aimersoft
2016-10-28 00:44 - 2016-10-28 00:44 - 00000000 ____D C:\Users\Gast
2016-10-28 00:44 - 2014-02-08 09:07 - 00002080 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft SkyDrive.lnk
2016-10-28 00:44 - 2010-06-26 10:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Media Center Programs
2016-10-28 00:44 - 2010-06-26 01:05 - 00000000 ____D C:\Users\Gast\AppData\Local\Hewlett-Packard
2016-10-28 00:32 - 2016-10-28 00:32 - 02267920 _____ (Digital Wave Ltd ) C:\Users\Patricia\Downloads\FreeAudioConverter_5.0.99.823_d.exe
2016-10-26 08:36 - 2016-10-26 08:36 - 08270712 _____ (Piriform Ltd) C:\Users\Patricia\Downloads\ccsetup523.exe
2016-10-17 23:36 - 2016-10-17 23:36 - 00000000 ____D C:\Users\Patricia\AppData\Local\Aimersoft
2016-10-17 23:36 - 2016-10-17 23:36 - 00000000 ____D C:\ProgramData\Aimersoft

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-11-14 14:32 - 2009-07-14 05:45 - 00026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-14 14:32 - 2009-07-14 05:45 - 00026192 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-14 14:27 - 2015-06-14 21:48 - 00001218 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-11-14 14:26 - 2016-07-11 22:21 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-14 14:26 - 2015-03-23 09:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-14 10:40 - 2016-07-11 22:21 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-14 10:40 - 2015-06-14 21:51 - 00000000 ___RD C:\Users\Patricia\Dropbox
2016-11-14 10:40 - 2015-06-14 21:48 - 00001214 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-11-14 10:40 - 2015-05-24 16:38 - 00000000 ___RD C:\Users\Patricia\iCloudDrive
2016-11-14 10:40 - 2014-02-08 09:07 - 00000000 ___RD C:\Users\Patricia\SkyDrive
2016-11-14 10:28 - 2015-02-13 12:25 - 00000012 ____H C:\dvmexp.idx
2016-11-14 10:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-14 03:16 - 2015-02-19 23:03 - 00527135 _____ C:\bdlog.txt
2016-11-14 00:57 - 2010-11-19 15:04 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F4DE1FA4-31A2-4486-BD9F-59C9A32074EB}
2016-11-13 18:06 - 2010-05-19 16:04 - 04364790 _____ C:\Windows\system32\perfh007.dat
2016-11-13 18:06 - 2010-05-19 16:04 - 01320752 _____ C:\Windows\system32\perfc007.dat
2016-11-13 18:06 - 2009-07-14 06:13 - 00006556 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-13 17:31 - 2010-11-18 23:44 - 00000000 ____D C:\Users\Patricia
2016-11-13 17:19 - 2016-07-10 18:52 - 00000000 ____D C:\Users\Patricia\Documents\spirit
2016-11-13 17:17 - 2016-10-02 22:08 - 00000000 ____D C:\Users\Patricia\Documents\Infos
2016-11-13 17:14 - 2011-10-12 20:12 - 00000000 ____D C:\Users\Patricia\Documents\Büro
2016-11-13 17:07 - 2016-01-24 12:02 - 00000000 ____D C:\Users\Patricia\Documents\change now
2016-11-13 16:26 - 2010-11-20 20:08 - 00000000 ____D C:\Users\Patricia\AppData\Roaming\Skype
2016-11-12 22:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-11 20:48 - 2015-06-14 21:48 - 00000000 ____D C:\Program Files (x86)\Dropbox
2016-11-11 09:31 - 2013-10-27 09:35 - 00000000 ____D C:\ProgramData\Oracle
2016-11-11 09:25 - 2015-02-19 23:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2016-11-11 09:25 - 2013-10-27 09:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-11 09:25 - 2010-05-19 09:23 - 00000000 ____D C:\Program Files\Java
2016-11-11 09:24 - 2015-02-19 23:57 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2016-11-11 09:23 - 2015-02-21 08:39 - 00000000 ____D C:\Program Files\Waterfox
2016-11-10 08:50 - 2015-06-14 21:48 - 00004214 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineUA
2016-11-10 08:50 - 2015-06-14 21:48 - 00003962 _____ C:\Windows\System32\Tasks\DropboxUpdateTaskMachineCore
2016-11-09 23:42 - 2015-03-07 07:04 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-09 20:14 - 2010-11-20 20:09 - 00000000 ____D C:\Program Files (x86)\Google
2016-11-09 11:13 - 2010-11-21 23:56 - 00000000 ____D C:\Windows\Minidump
2016-11-08 18:56 - 2015-03-23 09:20 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-11-08 18:56 - 2015-02-19 23:35 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-11-08 18:56 - 2015-02-19 23:35 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-11-08 18:56 - 2011-11-12 12:27 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-08 18:56 - 2010-05-19 08:11 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-11-07 15:18 - 2010-11-18 23:45 - 00138968 _____ C:\Users\Patricia\AppData\Local\GDIPFONTCACHEV1.DAT
2016-11-07 13:11 - 2009-07-14 05:45 - 00502432 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-07 00:33 - 2014-04-24 23:20 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4
2016-11-07 00:00 - 2016-04-20 12:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-11-07 00:00 - 2014-03-25 01:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-11-06 23:53 - 2014-10-13 14:31 - 00263680 ___SH C:\Users\Patricia\Documents\Thumbs.db
2016-11-06 23:45 - 2015-02-20 21:09 - 00001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-11-06 23:45 - 2015-02-20 21:09 - 00001107 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-11-06 21:14 - 2015-02-21 08:39 - 00000854 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waterfox.lnk
2016-11-06 21:14 - 2015-02-21 08:39 - 00000842 _____ C:\Users\Public\Desktop\Waterfox.lnk
2016-11-03 22:51 - 2012-02-03 23:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-11-03 15:58 - 2016-04-20 14:46 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-01 22:11 - 2016-01-24 11:52 - 00000000 ____D C:\Users\Patricia\Downloads\change now
2016-10-28 16:06 - 2014-09-02 12:46 - 00000000 ____D C:\Users\Patricia\AppData\Local\BCC913D7-8D2C-49DB-9D30-5C690386D06B.aplzod
2016-10-28 00:34 - 2016-08-13 09:03 - 00001394 _____ C:\Users\Public\Desktop\Free Audio Converter.lnk
2016-10-28 00:34 - 2016-08-13 09:03 - 00001291 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2016-10-28 00:34 - 2016-08-13 09:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2016-10-28 00:34 - 2016-08-13 09:02 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2016-10-27 20:58 - 2010-11-20 20:08 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-10-27 20:58 - 2010-11-20 20:08 - 00000000 ____D C:\ProgramData\Skype
2016-10-26 08:37 - 2013-05-24 10:17 - 00000782 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-10-22 20:44 - 2016-05-18 22:07 - 00003204 _____ C:\Windows\System32\Tasks\HPCeeScheduleForPatricia
2016-10-22 20:44 - 2016-05-18 22:07 - 00000344 _____ C:\Windows\Tasks\HPCeeScheduleForPatricia.job
2016-10-17 23:30 - 2014-02-08 09:00 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-10-17 23:29 - 2014-02-08 08:57 - 00000000 ____D C:\Program Files\Microsoft Office 15

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2011-03-24 10:51 - 2011-07-13 16:44 - 0001854 _____ () C:\Users\Patricia\AppData\Roaming\GhostObjGAFix.xml
2014-03-25 00:53 - 2014-07-19 09:07 - 0000115 _____ () C:\Users\Patricia\AppData\Roaming\WB.CFG
2015-03-20 10:13 - 2015-03-20 10:13 - 0619421 _____ () C:\ProgramData\1426842295.bdinstall.bin
2010-06-26 01:11 - 2010-06-26 01:11 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2010-05-19 08:50 - 2010-05-19 08:51 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2010-06-26 01:10 - 2010-06-26 01:10 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2010-05-19 08:44 - 2010-05-19 08:45 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2010-06-26 01:10 - 2010-06-26 01:10 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2010-06-26 01:10 - 2010-06-26 01:10 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2010-05-19 08:44 - 2010-05-19 08:44 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2010-05-19 08:45 - 2010-05-19 08:50 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2010-06-26 01:11 - 2010-06-26 01:11 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-11-14 03:00

==================== Ende von FRST.txt ============================

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2016
durchgeführt von Patricia (14-11-2016 14:39:51)
Gestartet von C:\Users\Patricia\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2010-11-18 22:44:32)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1886241858-427757544-3799178666-500 - Administrator - Disabled)
Gast (S-1-5-21-1886241858-427757544-3799178666-501 - Limited - Enabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1886241858-427757544-3799178666-1003 - Limited - Enabled)
Patricia (S-1-5-21-1886241858-427757544-3799178666-1000 - Administrator - Enabled) => C:\Users\Patricia

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM-x32\...\{D8DFA46A-39F7-4368-810D-18AFCFDDAEAF}) (Version: 11.5.1.601 - Adobe Systems, Inc.)
Airport Mania (x32 Version: 2.2.0.82 - WildTangent) Hidden
Ancient Hearts (x32 Version: 2.2.0.82 - WildTangent) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{FB07515A-48AC-9996-16EE-3A3DC8CF8D8E}) (Version: 3.0.790.0 - ATI Technologies, Inc.)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.21.0.1497 - Bitdefender)
Blasterball 3 (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bob the Builder Can-Do-Zoo (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Bookworm Adventures (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bounce Symphony (x32 Version: 2.2.0.82 - WildTangent) Hidden
Broadcom 2070 Bluetooth 2.1 + EDR (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.1100 - Broadcom Corporation)
Build-a-lot (x32 Version: 2.2.0.87 - WildTangent) Hidden
Build-a-lot 2 (x32 Version: 2.2.0.82 - WildTangent) Hidden
BumpTop (HKLM-x32\...\{71702641-2849-45A4-8E62-4B85974B24A0}_is1) (Version: 2.0.5532 - Bump Technologies, Inc.)
ccc-core-static (x32 Version: 2010.0909.1412.23625 - Ihr Firmenname) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
CyberLink DVD Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.2527 - CyberLink Corp.)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
Dora's Carnival Adventure (x32 Version: 2.2.0.82 - WildTangent) Hidden
Dora's World Adventure (x32 Version: 2.2.0.82 - WildTangent) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 14.4.19 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.57.1 - Dropbox, Inc.) Hidden
Druckerdeinstallation für EPSON SX410 Series (HKLM\...\EPSON SX410 Series) (Version:  - SEIKO EPSON Corporation)
DVD Menu Pack for HP TouchSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 3.2.3715 - Hewlett-Packard)
DVD Menu Pack for HP TouchSmart Video (x32 Version: 3.2.3715 - Hewlett-Packard) Hidden
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - )
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
FATE (x32 Version: 2.2.0.82 - WildTangent) Hidden
Free Audio Converter (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.99.823 - Digital Wave Ltd)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard)
HP Advisor (HKLM-x32\...\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}) (Version: 3.4.10144.3282 - Hewlett-Packard)
HP DVB-T TV Tuner 8.0.64.43 (HKLM-x32\...\HP DVB-T TV Tuner) (Version: 8.0.64.43 - )
HP ENVY Document Card Utilities (HKLM-x32\...\{FEC7B56F-A010-4866-809E-F5082CF5BB8C}) (Version: 1.0.5 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.0.80 - WildTangent)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.0.3727 - Hewlett-Packard)
HP Quick Launch (HKLM\...\{10F539B1-31AF-43BF-9F0C-0EB66E918922}) (Version: 1.0.18 - Hewlett-Packard)
HP QuickWeb Installer (HKLM-x32\...\{394FA67A-FF0A-4356-BB77-D85E5A300BDE}) (Version: 1.2.9.1 - DeviceVM Inc.)
HP Setup (HKLM-x32\...\{E2831862-F131-4327-B9CC-FA30F587EB6C}) (Version: 1.2.3988.3281 - Hewlett-Packard)
HP SimplePass Identity Protection (HKLM\...\{F20DF0CA-5929-4C26-A501-FDB19FDF0A50}) (Version: 5.00.140 - DigitalPersona, Inc.)
HP Software Framework (HKLM-x32\...\{B446137B-18A1-4FAE-B0E4-ABE8F09705F1}) (Version: 4.1.6.1 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{56D27851-B9A6-430F-875A-E2D7A3802C7B}) (Version: 8.3.34.7 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{D549B5E2-DBE8-4190-ABA5-71106264398C}) (Version: 12.5.32.37 - HP Inc.)
HP Tone Control (HKLM\...\{9207D4A1-586E-49CA-A002-FC9F475AB1A3}) (Version: 2.0.2 - Hewlett-Packard Company)
HP TouchSmart (HKLM-x32\...\{5F10FEF8-0538-4BB7-9020-E553C85427E9}) (Version: 3.0.35.0 - Hewlett-Packard)
HP TouchSmart Calendar (HKLM-x32\...\{6C3A9359-C3AA-4665-B15B-5E5C3210819F}) (Version: 3.1.3574.19334 - Hewlett-Packard)
HP TouchSmart Canvas (HKLM-x32\...\{2752631F-ABA9-4B43-A7E2-35C03512AAE3}) (Version: 1.1.3657.30905 - Hewlett-Packard)
HP TouchSmart Clock (HKLM-x32\...\{053BC793-EB2F-48B6-AB61-6B76CCCCB041}) (Version: 3.0.3572.25998 - Hewlett-Packard)
HP TouchSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.2.2513 - Hewlett-Packard)
HP TouchSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 3.2.3722 - Hewlett-Packard)
HP TouchSmart Notes (HKLM-x32\...\{2AE9A32B-68FE-4824-942C-9A7C322C65AB}) (Version: 3.2.3635.21983 - Hewlett-Packard)
HP TouchSmart Photo (HKLM-x32\...\InstallShield_{C9DCE03F-8CB7-4146-A99C-0612D75177EA}) (Version: 3.2.3722 - Hewlett-Packard)
HP TouchSmart Tutorials (HKLM-x32\...\{858FCB65-7C6D-4BA4-AD80-A3CB3744CE09}_is1) (Version: 3.1.0.1 - Hewlett-Packard)
HP TouchSmart Video (HKLM-x32\...\InstallShield_{F04BFADD-C8CA-4C86-8F20-B1D7F4F8C66C}) (Version: 3.2.3722 - Hewlett-Packard)
HP TouchSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.2.2511 - Hewlett-Packard)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP User Guides 0176 (HKLM-x32\...\{20B88A14-02F9-48D4-ACEC-6D8F5F3E8A83}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{AA115151-313F-45B3-BCAC-E9B77CD5F84A}) (Version: 4.0.3.2 - Hewlett-Packard)
iCloud (HKLM\...\{29AAC3D3-23FC-496D-8266-0E3833686758}) (Version: 6.0.2.10 - Apple Inc.)
ICQ7M (HKLM-x32\...\{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}) (Version: 7.8 - ICQ)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6265.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.2.50.1050 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.00.01.1002 - Intel Corporation)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java SE Development Kit 8 Update 31 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180310}) (Version: 8.0.310.13 - Oracle Corporation)
Jewel Quest 3 (x32 Version: 2.2.0.82 - WildTangent) Hidden
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.82 - WildTangent) Hidden
JoJo's Fashion Show (x32 Version: 2.2.0.82 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2515 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.2515 - CyberLink Corp.) Hidden
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LightScribe System Software (HKLM-x32\...\{FA8BFB25-BF48-4F8B-8859-B30810745190}) (Version: 1.18.11.1 - LightScribe)
LUMIX Map Tool (HKLM-x32\...\InstallShield_{7DCF5B1D-79C2-4F24-9746-511436EBC6B4}) (Version: 1.1.0 - Panasonic Corporation)
LUMIX Map Tool (x32 Version: 1.1.0 - Panasonic Corporation) Hidden
Magic Desktop (HKLM-x32\...\EasyBits Magic Desktop) (Version:  - EasyBits Software AS)
Mah Jong Medley (x32 Version: 2.2.0.82 - WildTangent) Hidden
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4867.1003 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Touch Pack for Windows 7 (HKLM-x32\...\{8FF90DB8-6DED-44A3-B182-244FEC09012F}) (Version: 1.0.40517.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Movie Theme Pack for HP TouchSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.2.3715 - Hewlett-Packard)
Movie Theme Pack for HP TouchSmart Video (x32 Version: 3.2.3715 - Hewlett-Packard) Hidden
Mozilla Firefox 49.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 en-US)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4867.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4867.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4867.1003 - Microsoft Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
paint.net (HKLM\...\{A1D05314-DC32-4668-A97E-51060EC8BCCE}) (Version: 4.0.12 - dotPDN LLC)
PC Connectivity Solution (HKLM-x32\...\{4B28C077-9958-45F1-8BB4-CBF90A69AD4E}) (Version: 11.4.15.0 - Nokia)
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden
PHOTOfunSTUDIO 9.1 PE (HKLM-x32\...\{C13FE7DE-D34D-48CC-9FA3-8DB9A3621B98}) (Version: 9.01.709 - Panasonic Corporation)
PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
PhotoNow! (x32 Version: 1.1.6904 - CyberLink Corp.) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.82 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden
Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3715 - CyberLink Corp.)
Power2Go (x32 Version: 6.1.3715 - CyberLink Corp.) Hidden
PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2514 - CyberLink Corp.)
PowerDirector (x32 Version: 8.0.2514 - CyberLink Corp.) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.11.1127.2009 - Realtek)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
Recovery Manager (x32 Version: 5.5.2512 - CyberLink Corp.) Hidden
Skip-Bo - Castaway Caper (x32 Version: 2.2.0.82 - WildTangent) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.0 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
TextTwist 2 (x32 Version: 2.2.0.82 - WildTangent) Hidden
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version:  - (c) 2006-2011, Tom Thielicke IT Solutions)
Tradewinds Legends (x32 Version: 2.2.0.82 - WildTangent) Hidden
Validity Sensors DDK (HKLM\...\{EE5017A6-7525-4EE9-99DA-2EF1F6C16B1B}) (Version: 4.1.129.0 - Validity Sensors, Inc.)
Virtual Earth 3D (Beta) (HKLM\...\{6ACE7F46-FACE-4125-AE86-672F4F2A6A28}) (Version: 4.0.903.16005 - Microsoft Corporation)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.82 - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Waterfox 49.0.3 (x64 en-US) (HKLM\...\Waterfox 49.0.3 (x64 en-US)) (Version: 49.0.3 - Mozilla)
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom Bluetooth  (12/16/2009 6.2.0.9414) (HKLM\...\7E38E30BB92ED94B21CF062A7386554CBA991FEB) (Version: 12/16/2009 6.2.0.9414 - Broadcom)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows-Treiberpaket - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Zoom (HKU\S-1-5-21-1886241858-427757544-3799178666-1000\...\ZoomUMX) (Version: 3.5 - Zoom Video Communications, Inc.)
Zuma's Revenge (x32 Version: 2.2.0.82 - WildTangent) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1886241858-427757544-3799178666-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-1886241858-427757544-3799178666-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0940B83C-F5AA-427D-9772-24F40D9D1974} - System32\Tasks\{41922996-42AE-41F2-84B1-9340A8EF2A3A} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2016-10-17] (Skype Technologies S.A.)
Task: {1CCF3D73-E8B7-4076-BEF1-05A15727872E} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {2061D07E-D254-47D4-84FC-0F38C8AFA47F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {2FDFA432-5D1E-4BEB-A8B3-319D7104B969} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {3245D747-0F4F-4598-B37F-B006C51081BC} - System32\Tasks\RecoveryCDWin7 => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-01-26] ()
Task: {447A50C3-8FA2-42B9-8A3F-7ED4304D3740} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks [Argument = /run /TN "\Microsoft\Windows\Setup\gwx\refreshgwxconfig"]
Task: {48C4300F-5E38-4A7B-BA51-321022D09F23} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe [2015-07-30] (Bitdefender)
Task: {49F2E4F0-04B1-4AC7-9330-F99DDAE02DFB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.)
Task: {4C062C34-E4D3-4033-8C49-EE3856E14949} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {505E45EB-E476-49D2-B3A9-0BBB98F5C0AE} - System32\Tasks\{817E48B8-E516-4215-87E1-233802CF979B} => pcalua.exe -a C:\Users\Patricia\Downloads\irfanview_plugins_438_setup.exe -d C:\Users\Patricia\Downloads
Task: {65151BB9-88F8-45CE-A34C-1C3EA0479214} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-01-26] ()
Task: {65A6DC34-E19B-47A7-BC39-E504B0DE9111} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08] (Hewlett-Packard)
Task: {671FC666-447C-456C-9F09-997636E16A0B} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22] (Oracle Corporation)
Task: {677DBA86-D941-487D-93EB-FFEA2EE3B95A} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
Task: {6826D090-620E-4013-913C-FF69D84EB0A8} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {6A6F0E64-1168-418E-83AE-29BC2653A887} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08] (Adobe Systems Incorporated)
Task: {762B9018-F69D-402F-93CD-3946013A15D0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-11] (Google Inc.)
Task: {7891A779-EB94-4275-A2E9-C091250CCD96} - System32\Tasks\HPCeeScheduleForPatricia => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {8FF6D3FA-6D61-41C5-9B3B-899CB64CFDF5} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe
Task: {A3275013-EEBF-4D49-8280-203B9E9CE2E1} - System32\Tasks\Sun Microsystems-Online-Aktualisierungsprogramm => C:\Program Files\Java\jre6\bin\jusched.exe
Task: {A4C0C0ED-E1FE-4B2F-BECA-55D0F6A1FB40} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-11] (Google Inc.)
Task: {A64A7F25-B587-4C17-9B01-99FBBF0110C8} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2016-07-26] (Microsoft Corporation)
Task: {C52178FF-9353-463D-9105-8C5B2C7EF6E2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {C94BDFEC-AF48-434E-A355-8B25AD4EEE33} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {DF9D3B48-7F19-47D2-8CC3-0A121DA583F2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-07-04] (HP Inc.)
Task: {F596CA12-A46F-4EFF-8651-4DD44EDFB0EB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-10-03] (Microsoft Corporation)
Task: {F6F0DFEC-FFAF-43D4-BDFC-2DF2F3F2CA9D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.)
Task: {F7337775-7990-4D1E-8465-97558166CFBC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-10-03] (Microsoft Corporation)
Task: {F95CF359-F772-469D-AC77-40EFCAA4C78C} - System32\Tasks\{D18129D0-6DAE-412F-8560-2B53DF2E67A6} => pcalua.exe -a C:\Users\Patricia\Downloads\SetupOviPlayer(2).exe -d "C:\Program Files (x86)\Mozilla Firefox"

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForPatricia.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-03-20 10:10 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2015-03-20 10:10 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2015-03-20 10:10 - 2015-02-12 22:53 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2015-03-20 10:10 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2016-05-10 06:55 - 2016-05-10 06:55 - 01006336 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02251_017\ashttpbr.mdl
2016-05-10 06:55 - 2016-05-10 06:55 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02251_017\ashttpdsp.mdl
2016-05-10 06:55 - 2016-05-10 06:55 - 03035488 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02251_017\ashttpph.mdl
2016-05-10 06:55 - 2016-05-10 06:55 - 01541440 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_02251_017\ashttprbl.mdl
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 17:17 - 2016-10-05 17:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-24 18:31 - 2016-05-24 08:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2010-01-18 14:04 - 2010-01-18 14:04 - 00020480 _____ () C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
2016-08-23 16:02 - 2016-08-23 16:02 - 01864384 _____ () C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-09-19 13:35 - 2015-02-27 13:38 - 00721263 _____ () C:\Windows\SysWOW64\AiCM64.dll
2009-12-29 13:19 - 2009-12-29 13:19 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2016-09-28 17:25 - 2016-09-28 17:25 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2010-09-09 14:50 - 2010-09-09 14:50 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-09-09 13:11 - 2010-09-09 13:11 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2009-12-16 13:51 - 2009-12-16 13:51 - 00030264 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_LogicLayer.dll
2009-12-16 13:51 - 2009-12-16 13:51 - 00052280 _____ () C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HardwareAccess.dll
2016-08-13 09:02 - 2016-10-27 11:13 - 00114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2016-08-13 09:02 - 2016-10-27 11:13 - 00108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2016-08-13 09:02 - 2016-10-27 11:13 - 00024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2016-08-13 09:02 - 2016-10-27 11:13 - 00048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2010-01-22 09:29 - 2010-01-22 09:29 - 02121728 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2010-01-22 09:30 - 2010-01-22 09:30 - 07745536 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2010-01-22 09:29 - 2010-01-22 09:29 - 00135168 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2016-10-05 17:18 - 2016-10-05 17:18 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-01 17:13 - 2016-09-01 17:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 17:18 - 2016-10-05 17:18 - 00189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-08-23 16:02 - 2016-08-23 16:02 - 01383616 _____ () C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-08-23 16:02 - 2016-08-23 16:02 - 00118976 _____ () C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2015-12-13 00:13 - 2016-10-10 17:29 - 00035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2016-11-11 20:47 - 2016-10-10 17:29 - 00145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2016-11-11 20:47 - 2016-10-10 17:29 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2016-11-11 20:47 - 2016-10-10 17:29 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-13 00:13 - 2016-10-10 17:29 - 00100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-13 00:13 - 2016-10-10 17:29 - 00018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-13 00:13 - 2016-11-07 23:59 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-13 00:13 - 2016-10-10 17:29 - 00694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2016-11-11 20:47 - 2016-11-07 23:58 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-13 00:13 - 2016-10-10 17:30 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2016-11-11 20:47 - 2016-11-07 23:58 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2016-11-11 20:47 - 2016-11-07 23:58 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2016-08-05 19:52 - 2016-11-07 23:59 - 00021312 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2016-11-11 20:47 - 2016-10-10 17:29 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2016-11-11 20:47 - 2016-10-10 17:31 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-13 00:13 - 2016-11-07 23:59 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2016-08-05 19:52 - 2016-11-07 23:59 - 00025424 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2016-11-11 20:47 - 2016-11-07 23:58 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-08-05 19:52 - 2016-10-10 17:30 - 00241104 _____ () C:\Program Files (x86)\Dropbox\Client\_jpegtran.pyd
2016-11-11 20:47 - 2016-11-07 23:58 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-13 00:13 - 2016-11-07 23:59 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2016-02-19 09:45 - 2016-11-07 23:59 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-02-19 09:45 - 2016-11-07 23:59 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd
2016-02-19 09:45 - 2016-11-07 23:59 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2016-02-19 09:45 - 2016-11-07 23:59 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2016-11-11 20:47 - 2016-10-10 17:27 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2016-11-11 20:47 - 2016-11-07 23:59 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2016-11-11 20:47 - 2016-11-07 23:59 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-13 00:13 - 2016-10-10 17:29 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 01972528 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00133424 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00224056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2016-08-05 19:52 - 2016-11-07 23:59 - 00020288 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32._winffi_user32.pyd
2016-11-11 20:47 - 2016-10-10 17:33 - 00017864 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.dll
2016-11-11 20:47 - 2016-10-10 17:34 - 01631184 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2016-11-11 20:47 - 2016-11-07 23:59 - 00042808 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00168760 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2015-12-13 00:13 - 2016-10-10 17:31 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2016-08-05 19:52 - 2016-11-07 23:59 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2016-11-11 20:47 - 2016-11-07 23:59 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2016-09-19 13:35 - 2014-10-31 15:42 - 01498112 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2016-09-19 13:35 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2016-09-17 09:27 - 2016-09-17 09:27 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:B3ED3AFF [125]
AlternateDataStreams: C:\Users\Patricia\Downloads\Firefox Setup Stub 49.0.2.exe:BDU [0]
AlternateDataStreams: C:\Users\Patricia\Downloads\GoogleEarthSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Patricia\Downloads\jdk-8u31-windows-x64.exe:BDU [0]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2016-04-29 00:23 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1886241858-427757544-3799178666-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Patricia\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: EPSON SX410 Series => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFCE.EXE /FU "C:\Windows\TEMP\E_S230B.tmp" /EF "HKCU"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{75CFB19B-6795-4328-8FBE-E7986304A79D}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
FirewallRules: [{D78E48E8-5B62-44ED-918C-5C10CE847D3C}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe
FirewallRules: [{5FE6E8C2-77C4-4EC1-BBFC-C19E7B0B73A7}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
FirewallRules: [{FA5F04E9-7B86-4EA9-984E-46252D2A898D}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Photo\PhotoAgent.exe
FirewallRules: [{37858581-2620-4214-ABD0-6C3D32EE9610}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\iTV\HPiTV.exe
FirewallRules: [{FA696FCF-837B-4423-B5CB-AA43F5EB92A4}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{95EF5017-7290-4A35-93A8-F3794411D66B}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{C5009945-4955-44BC-A30D-5A1ACC731B43}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{319FB7A8-088B-4BB8-B9C1-240F3B6DB4FE}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A4A818EE-D063-4B8A-A06E-8401D61A9992}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{35FC4757-32E6-43E1-964C-C1F359AB4BCF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A1028C5C-1B8B-4F36-8E2C-D002A0F6FC24}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5DB5C56A-D22F-47B1-8342-727048BB6412}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{667F4C32-8D27-4EA6-92A4-E127E9E9D48B}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{19454F14-858C-4F2D-A677-3648108B2FAF}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{EC3FFB45-56C7-4931-854F-9C9E7604EB4D}] => (Allow) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
FirewallRules: [{EA700448-E7EA-4BA6-B356-281F922A323F}] => (Allow) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
FirewallRules: [{26ABB193-25EF-4606-9396-9226287E08A0}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{4704764B-5AD2-4E75-8D5C-693966287E23}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{68D89416-F056-4003-A7C8-2E8C07F0FD00}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{47C35F4C-B2BD-4C17-88CA-31F112D65096}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{086D3E2A-7DA7-4CE7-BF06-C063127E3F77}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [{53434532-466B-4200-ABFB-E77892602797}] => (Allow) C:\Program Files (x86)\ICQ7M\ICQ.exe
FirewallRules: [TCP Query User{FF04C42E-AE7C-4B2A-B14C-4C8A9B19B85E}C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe] => (Block) C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe
FirewallRules: [UDP Query User{3EE5C549-E508-4AC3-BCFE-9166746B1928}C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe] => (Block) C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe
FirewallRules: [{7C0D32DF-5AEA-45E7-AEC1-B0B35781E036}] => (Allow) C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{54D68C1C-5BF9-462C-847A-3A9E0FC58BA5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{DD653EEE-7188-4E42-B374-7C848A046FC9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5D02735F-3D8F-4AEE-AF8A-300B374AE018}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0C1CEB6A-D74D-40B8-B2FB-7BB5624E4940}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{1A0E7D15-E249-4CB9-BD9F-D1F5AFB5D0BF}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [TCP Query User{B5BF160D-CC01-4DCF-B668-301055F3403A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{D4B13239-D43F-4789-B495-539AC9D8086C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{B1FE04ED-014B-4EED-B96E-44166008D337}C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe] => (Block) C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe
FirewallRules: [UDP Query User{8C89E45A-BD48-43CC-9C19-3C631DA5AA8F}C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe] => (Block) C:\program files (x86)\hewlett-packard\touchsmart\photo\hptouchsmartphoto.exe
FirewallRules: [{45D470DC-C310-415B-8C4A-2B30CDB1646A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{977148D2-3593-4D41-A88D-49D2C3B3306C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{AD5A9731-A0AE-454F-BAD7-4D795885227B}C:\program files (x86)\hewlett-packard\touchsmart\music\hptouchsmartmusic.exe] => (Block) C:\program files (x86)\hewlett-packard\touchsmart\music\hptouchsmartmusic.exe
FirewallRules: [UDP Query User{84F3E5B5-8399-48D6-941A-843AA71E2205}C:\program files (x86)\hewlett-packard\touchsmart\music\hptouchsmartmusic.exe] => (Block) C:\program files (x86)\hewlett-packard\touchsmart\music\hptouchsmartmusic.exe
FirewallRules: [{4465CED9-BA50-4DE4-93DF-261B655554A2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{02CFCF47-4963-4C4F-B80E-0250F8861DB2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AB13321D-1237-41C1-95C8-DDDD2851E122}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{89D2B9AC-7D42-4C36-AF13-D8B6BE6C82F9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{042F9A87-E8A1-491C-B905-9B791DC252BA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{9936200C-8784-4613-B983-9EDFDB552E66}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe

==================== Wiederherstellungspunkte =========================

20-10-2016 22:35:29 Geplanter Prüfpunkt
29-10-2016 14:41:18 Geplanter Prüfpunkt
07-11-2016 00:30:34 OpenOffice 4.1.3 wird installiert

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (11/14/2016 02:30:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: CCleaner64 (12236) testing: Fehler -1032 (0xfffffbf8) beim Öffnen von Protokolldatei C:\Users\Patricia\AppData\Local\Microsoft\Windows\WebCache\V01.log.

Error: (11/14/2016 02:30:06 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (12236) testing: Versuch, Datei "C:\Users\Patricia\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (11/14/2016 02:29:56 PM) (Source: ESENT) (EventID: 455) (User: )
Description: CCleaner64 (12236) testing: Fehler -1032 (0xfffffbf8) beim Öffnen von Protokolldatei C:\Users\Patricia\AppData\Local\Microsoft\Windows\WebCache\V01.log.

Error: (11/14/2016 02:29:56 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (12236) testing: Versuch, Datei "C:\Users\Patricia\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (11/14/2016 02:28:24 PM) (Source: ESENT) (EventID: 489) (User: )
Description: CCleaner64 (12236) testing: Versuch, Datei "C:\Users\Patricia\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (11/14/2016 02:28:14 PM) (Source: ESENT) (EventID: 490) (User: )
Description: CCleaner64 (12236) testing: Versuch, Datei "C:\Users\Patricia\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.

Error: (11/14/2016 01:15:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8367300

Error: (11/14/2016 01:15:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8367300

Error: (11/14/2016 01:15:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/14/2016 10:56:03 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5366


Systemfehler:
=============
Error: (11/14/2016 10:28:03 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Client Virtualization Handler" ist vom Dienst "Application Virtualization Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.

Error: (11/14/2016 10:28:03 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Application Virtualization Client" wurde mit folgendem Fehler beendet: 
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.

Error: (11/14/2016 12:03:02 AM) (Source: MTConfig) (EventID: 1) (User: )
Description: Fehler beim Konfigurieren des Eingabemodus eines Mehrfingereingabegeräts.

Error: (11/13/2016 06:03:09 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{14286318-B6CF-49A1-81FC-D74AD94902F9}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (11/13/2016 06:01:39 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/13/2016 06:01:39 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (11/13/2016 06:00:02 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Client Virtualization Handler" ist vom Dienst "Application Virtualization Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.

Error: (11/13/2016 06:00:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Application Virtualization Client" wurde mit folgendem Fehler beendet: 
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.

Error: (11/13/2016 03:07:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Superfetch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (11/13/2016 03:06:41 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


CodeIntegrity:
===================================
  Date: 2016-11-14 14:33:55.598
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 14:33:51.730
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 14:33:27.034
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 14:26:59.323
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 10:42:39.835
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 10:41:58.279
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 10:41:44.960
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 10:40:14.185
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 10:28:17.388
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-14 03:15:48.136
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5 CPU M 520 @ 2.40GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 5941.86 MB
Verfügbarer physikalischer RAM: 3056.46 MB
Summe virtueller Speicher: 11881.93 MB
Verfügbarer virtueller Speicher: 7787.05 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:439.39 GB) (Free:305.97 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (RECOVERY) (Fixed) (Total:26.08 GB) (Free:3.79 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: AACE7FA0)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=439.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=26.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== Ende von Addition.txt ============================

deeprybka · 14.11.2016, 17:23

Hi,

Schritt 1
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

smayate · 14.11.2016, 20:06

Hi Jürgen,

TDSS Killer, no threats found. Ich kann dir den Report nicht schicken:
"Die folgenden Fehler traten bei der Verarbeitung auf:

Der Text, den Sie eingegeben haben, besteht aus 123699 Zeichen und ist damit zu lang. Bitte die Logs auf mehrere Beiträge aufspalten mit maximaler Länge von 120000 Zeichen."

hmmmm, Habe ja nur ein log. Tatsächlich Text aufteilen und 2 posts nacheinander? oder ausnahmsweise mit Anhang senden?
Ich bitte um klare Anweisungen. Vielen Dank und freundliche Grüsse!

deeprybka · 15.11.2016, 17:50

Zitat:

Zitat von deeprybka

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Wenn es auf einmal nicht geht, dann bitte splitten.

smayate · 15.11.2016, 18:51

Code:

ATTFilter

19:20:41.0033 0x216c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
19:21:39.0846 0x216c  ============================================================
19:21:39.0846 0x216c  Current date / time: 2016/11/14 19:21:39.0846
19:21:39.0846 0x216c  SystemInfo:
19:21:39.0846 0x216c  
19:21:39.0846 0x216c  OS Version: 6.1.7601 ServicePack: 1.0
19:21:39.0846 0x216c  Product type: Workstation
19:21:39.0846 0x216c  ComputerName: HOMEPC
19:21:39.0847 0x216c  UserName: Patricia
19:21:39.0847 0x216c  Windows directory: C:\Windows
19:21:39.0847 0x216c  System windows directory: C:\Windows
19:21:39.0847 0x216c  Running under WOW64
19:21:39.0847 0x216c  Processor architecture: Intel x64
19:21:39.0847 0x216c  Number of processors: 4
19:21:39.0847 0x216c  Page size: 0x1000
19:21:39.0847 0x216c  Boot type: Normal boot
19:21:39.0851 0x216c  CodeIntegrityOptions = 0x00000001
19:21:39.0851 0x216c  ============================================================
19:21:41.0362 0x216c  KLMD registered as C:\Windows\system32\drivers\08320134.sys
19:21:41.0362 0x216c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.19018, osProperties = 0x1
19:21:42.0041 0x216c  System UUID: {6B724DD8-DE67-8ED4-1118-700A5173E025}
19:21:42.0758 0x216c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:21:42.0765 0x216c  ============================================================
19:21:42.0765 0x216c  \Device\Harddisk0\DR0:
19:21:42.0766 0x216c  MBR partitions:
19:21:42.0766 0x216c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
19:21:42.0766 0x216c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x36EC6800
19:21:42.0766 0x216c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x36F2A800, BlocksNum 0x3427800
19:21:42.0766 0x216c  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
19:21:42.0766 0x216c  ============================================================
19:21:42.0796 0x216c  C: <-> \Device\Harddisk0\DR0\Partition2
19:21:42.0841 0x216c  D: <-> \Device\Harddisk0\DR0\Partition3
19:21:42.0856 0x216c  E: <-> \Device\Harddisk0\DR0\Partition4
19:21:42.0856 0x216c  ============================================================
19:21:42.0857 0x216c  Initialize success
19:21:42.0857 0x216c  ============================================================
19:22:56.0670 0x2bd4  ============================================================
19:22:56.0670 0x2bd4  Scan started
19:22:56.0670 0x2bd4  Mode: Manual; SigCheck; TDLFS; 
19:22:56.0670 0x2bd4  ============================================================
19:22:56.0670 0x2bd4  KSN ping started
19:22:56.0948 0x2bd4  KSN ping finished: true
19:22:58.0848 0x2bd4  ================ Scan system memory ========================
19:22:58.0848 0x2bd4  System memory - ok
19:22:58.0851 0x2bd4  ================ Scan services =============================
19:22:59.0006 0x2bd4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:22:59.0087 0x2bd4  1394ohci - ok
19:22:59.0136 0x2bd4  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5, C3CC58D636B18DF77C4C4B384AD1DE78418716A0606E564DBC63782D5EA02905 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
19:22:59.0159 0x2bd4  Accelerometer - ok
19:22:59.0218 0x2bd4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:22:59.0247 0x2bd4  ACPI - ok
19:22:59.0262 0x2bd4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:22:59.0285 0x2bd4  AcpiPmi - ok
19:22:59.0378 0x2bd4  [ C92B0A0957ACAD3CEEF502A2CA10ACB8, 78BF46318B69D9479ECDC83446DD8D454AA2A9A9D94B33C5FC68933DB18AFA3B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:22:59.0403 0x2bd4  AdobeARMservice - ok
19:22:59.0527 0x2bd4  [ 9BAF21BA600EC4E5FD9A66AD3E4FF5A6, 5E02E5E80557F6EC870EB7CC2DE95169D4225B87A2FE7E796736205F51C15816 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:22:59.0565 0x2bd4  AdobeFlashPlayerUpdateSvc - ok
19:22:59.0635 0x2bd4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
19:22:59.0669 0x2bd4  adp94xx - ok
19:22:59.0712 0x2bd4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
19:22:59.0751 0x2bd4  adpahci - ok
19:22:59.0787 0x2bd4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
19:22:59.0807 0x2bd4  adpu320 - ok
19:22:59.0844 0x2bd4  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:22:59.0865 0x2bd4  AeLookupSvc - ok
19:22:59.0922 0x2bd4  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
19:22:59.0948 0x2bd4  AFD - ok
19:22:59.0991 0x2bd4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
19:23:00.0006 0x2bd4  agp440 - ok
19:23:00.0027 0x2bd4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
19:23:00.0045 0x2bd4  ALG - ok
19:23:00.0075 0x2bd4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:23:00.0090 0x2bd4  aliide - ok
19:23:00.0139 0x2bd4  [ 48619A29F9C9C3CFEB66718DD03D8057, 64F2CD082253E664698868AEE544184E096EFF091E3CB97FB99C599B41A785BF ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:23:00.0164 0x2bd4  AMD External Events Utility - ok
19:23:00.0184 0x2bd4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:23:00.0198 0x2bd4  amdide - ok
19:23:00.0223 0x2bd4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
19:23:00.0243 0x2bd4  AmdK8 - ok
19:23:00.0550 0x2bd4  [ 06BF0785DE714637EBA9BB1084B28626, 34AA395DA7F68000C72861C65C4571FCCAEBFB6D95383E3CEBB3B156B2E8AB8C ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
19:23:00.0813 0x2bd4  amdkmdag - ok
19:23:00.0950 0x2bd4  [ 2DEC3274589FF6889AB05ADCEEB0F642, 575505F49834318CA7C49F4AE9E5AFA339D351EA7753A8D9D27152E88AC03ADD ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
19:23:00.0975 0x2bd4  amdkmdap - ok
19:23:00.0987 0x2bd4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
19:23:01.0006 0x2bd4  AmdPPM - ok
19:23:01.0038 0x2bd4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:23:01.0061 0x2bd4  amdsata - ok
19:23:01.0091 0x2bd4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
19:23:01.0114 0x2bd4  amdsbs - ok
19:23:01.0137 0x2bd4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:23:01.0155 0x2bd4  amdxata - ok
19:23:01.0215 0x2bd4  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
19:23:01.0233 0x2bd4  AppID - ok
19:23:01.0249 0x2bd4  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:23:01.0263 0x2bd4  AppIDSvc - ok
19:23:01.0294 0x2bd4  [ 978DC0A1FBE9CC91B21B40AF66CB396A, 90BAFF81D98F5AFD743D8BD65F716666A7A7BD2DA612492E03C79B29E9A0F8C2 ] Appinfo         C:\Windows\System32\appinfo.dll
19:23:01.0309 0x2bd4  Appinfo - ok
19:23:01.0391 0x2bd4  [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:23:01.0405 0x2bd4  Apple Mobile Device Service - ok
19:23:01.0441 0x2bd4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
19:23:01.0460 0x2bd4  arc - ok
19:23:01.0476 0x2bd4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
19:23:01.0497 0x2bd4  arcsas - ok
19:23:01.0603 0x2bd4  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:23:01.0620 0x2bd4  aspnet_state - ok
19:23:01.0637 0x2bd4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:23:01.0699 0x2bd4  AsyncMac - ok
19:23:01.0728 0x2bd4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:23:01.0747 0x2bd4  atapi - ok
19:23:02.0013 0x2bd4  [ B4421D8CDADC441F76BA39532A3E3414, 4C7C14C99E2095012A85672C824E21CF2FC152BCC37A1B25BF3189D0F6A06ED3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
19:23:02.0174 0x2bd4  athr - ok
19:23:02.0239 0x2bd4  [ 2D648572BA9A610952FCAFBA1E119C2D, 4CD7E7D3C878DEF8CC18A925EAB1E0E8E8893BE99DA1E1F78FE9AD12EF1C48BC ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
19:23:02.0259 0x2bd4  AtiHdmiService - ok
19:23:02.0329 0x2bd4  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:23:02.0373 0x2bd4  AudioEndpointBuilder - ok
19:23:02.0402 0x2bd4  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:23:02.0450 0x2bd4  AudioSrv - ok
19:23:02.0535 0x2bd4  [ 1517FBA8213F75ECCD9311DE493DD8C9, B5296BE2501F19B525BBC774465CB03E06BD5DE17DAED058CC74B0121D569EEF ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
19:23:02.0619 0x2bd4  avc3 - ok
19:23:02.0736 0x2bd4  [ 075AE98458B00E98F3104D777C062032, 3447D7E2439B8EE89047E3C43973490F47129C416A983B72F86EF67EB349F794 ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
19:23:02.0762 0x2bd4  avchv - ok
19:23:02.0800 0x2bd4  [ D1A0A4A314FCE6478F2E8C05D8DABC5B, 2EF0DE520081AB82B53733209EB1791D99ADA5E0F9E94B0EAC56E4609CB67D72 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
19:23:02.0842 0x2bd4  avckf - ok
19:23:02.0885 0x2bd4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:23:02.0924 0x2bd4  AxInstSV - ok
19:23:02.0974 0x2bd4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
19:23:03.0013 0x2bd4  b06bdrv - ok
19:23:03.0061 0x2bd4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:23:03.0093 0x2bd4  b57nd60a - ok
19:23:03.0200 0x2bd4  [ 1E20AEB58EB2D2DF3D43E255771079D7, EE2EA1B03550ADFCE940FA1BBD818A3BFA8DCB00CDA1D654E10F701A0C10E23C ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe
19:23:03.0219 0x2bd4  BdDesktopParental - ok
19:23:03.0258 0x2bd4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:23:03.0284 0x2bd4  BDESVC - ok
19:23:03.0314 0x2bd4  [ 9A9A632AA25D4B33BFA9D3202DEA0E87, 438FFDD092197BAFE86609D545E9218103F1BE25A49BF30C62E546BE3360C2CA ] BdfNdisf        c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
19:23:03.0338 0x2bd4  BdfNdisf - ok
19:23:03.0386 0x2bd4  [ EC80614A72BC7039D2B22E3DD6C15895, 932260AB126523428B884034162E3619E1B7FA13720F830783B592AAE825AC86 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
19:23:03.0407 0x2bd4  bdfwfpf - ok
19:23:03.0445 0x2bd4  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf_pc      C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys
19:23:03.0468 0x2bd4  bdfwfpf_pc - ok
19:23:03.0493 0x2bd4  [ 397307349A31F530718DAE781825A8EB, 65F6B1E7556A5B3D63BDD80E0E1D4BCB0A2CB804622DB7C511EBC4B5CFDA5A10 ] BDSandBox       C:\Windows\system32\drivers\bdsandbox.sys
19:23:03.0519 0x2bd4  BDSandBox - ok
19:23:03.0567 0x2bd4  [ 50F796CB1E8C80F3D19435CB50C3DAB5, 20CE5C1242F8D0DFEE13C8D07EF1A67F670A078BA44E810A3A042C6A060FACC9 ] BDVEDISK        C:\Windows\system32\DRIVERS\bdvedisk.sys
19:23:03.0586 0x2bd4  BDVEDISK - ok
19:23:03.0621 0x2bd4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:23:03.0676 0x2bd4  Beep - ok
19:23:03.0755 0x2bd4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
19:23:03.0811 0x2bd4  BFE - ok
19:23:03.0893 0x2bd4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
19:23:04.0006 0x2bd4  BITS - ok
19:23:04.0038 0x2bd4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:23:04.0062 0x2bd4  blbdrive - ok
19:23:04.0162 0x2bd4  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:23:04.0195 0x2bd4  Bonjour Service - ok
19:23:04.0224 0x2bd4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:23:04.0252 0x2bd4  bowser - ok
19:23:04.0273 0x2bd4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:23:04.0309 0x2bd4  BrFiltLo - ok
19:23:04.0335 0x2bd4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:23:04.0363 0x2bd4  BrFiltUp - ok
19:23:04.0391 0x2bd4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
19:23:04.0419 0x2bd4  Browser - ok
19:23:04.0451 0x2bd4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:23:04.0481 0x2bd4  Brserid - ok
19:23:04.0498 0x2bd4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:23:04.0528 0x2bd4  BrSerWdm - ok
19:23:04.0543 0x2bd4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:23:04.0575 0x2bd4  BrUsbMdm - ok
19:23:04.0588 0x2bd4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:23:04.0613 0x2bd4  BrUsbSer - ok
19:23:04.0660 0x2bd4  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
19:23:04.0680 0x2bd4  BthEnum - ok
19:23:04.0694 0x2bd4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:23:04.0721 0x2bd4  BTHMODEM - ok
19:23:04.0756 0x2bd4  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
19:23:04.0783 0x2bd4  BthPan - ok
19:23:04.0837 0x2bd4  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
19:23:04.0879 0x2bd4  BTHPORT - ok
19:23:04.0898 0x2bd4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
19:23:04.0965 0x2bd4  bthserv - ok
19:23:04.0987 0x2bd4  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
19:23:05.0013 0x2bd4  BTHUSB - ok
19:23:05.0040 0x2bd4  [ AF838D8029AE7C27470862D63FA54D24, 96247094D2446CEE594AD765B98DE8583762A96FE83223CB18B4CDB3A4958376 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
19:23:05.0061 0x2bd4  btwaudio - ok
19:23:05.0077 0x2bd4  [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
19:23:05.0096 0x2bd4  btwavdt - ok
19:23:05.0182 0x2bd4  [ 10FFB5FA51D5713D872B41A59DFC2213, E0C0EA99C862E3FCE4D121BB34DEC00E74A371DF4093A44055E70E9F4CFA3DC6 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
19:23:05.0229 0x2bd4  btwdins - ok
19:23:05.0247 0x2bd4  [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
19:23:05.0261 0x2bd4  btwl2cap - ok
19:23:05.0273 0x2bd4  [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
19:23:05.0289 0x2bd4  btwrchid - ok
19:23:05.0388 0x2bd4  [ AB4A81221C1D0D647CFACBE8A82636B0, B71E42DE06E2CB8701BEE693FE26F5110095161D05317A06FB850B911F0719DF ] CalendarSynchService C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
19:23:05.0435 0x2bd4  CalendarSynchService - ok
19:23:05.0472 0x2bd4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:23:05.0536 0x2bd4  cdfs - ok
19:23:05.0587 0x2bd4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:23:05.0612 0x2bd4  cdrom - ok
19:23:05.0654 0x2bd4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:23:05.0711 0x2bd4  CertPropSvc - ok
19:23:05.0732 0x2bd4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
19:23:05.0767 0x2bd4  circlass - ok
19:23:05.0821 0x2bd4  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
19:23:05.0853 0x2bd4  CLFS - ok
19:23:06.0051 0x2bd4  [ 99D4DBD01BC8384B8A395778D9F45D2C, 1F21E9E19FAF48CA7DDFB2A1ED39DBBB38AFCBEB86BED0A42A673D565D0C77FC ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
19:23:06.0199 0x2bd4  ClickToRunSvc - ok
19:23:06.0281 0x2bd4  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:23:06.0311 0x2bd4  clr_optimization_v2.0.50727_32 - ok
19:23:06.0354 0x2bd4  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:23:06.0375 0x2bd4  clr_optimization_v2.0.50727_64 - ok
19:23:06.0453 0x2bd4  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:23:06.0505 0x2bd4  clr_optimization_v4.0.30319_32 - ok
19:23:06.0526 0x2bd4  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:23:06.0555 0x2bd4  clr_optimization_v4.0.30319_64 - ok
19:23:06.0584 0x2bd4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:23:06.0609 0x2bd4  CmBatt - ok
19:23:06.0634 0x2bd4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:23:06.0652 0x2bd4  cmdide - ok
19:23:06.0727 0x2bd4  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
19:23:06.0766 0x2bd4  CNG - ok
19:23:06.0791 0x2bd4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:23:06.0808 0x2bd4  Compbatt - ok
19:23:06.0859 0x2bd4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:23:06.0878 0x2bd4  CompositeBus - ok
19:23:06.0898 0x2bd4  COMSysApp - ok
19:23:06.0916 0x2bd4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
19:23:06.0929 0x2bd4  crcdisk - ok
19:23:06.0971 0x2bd4  [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:23:06.0991 0x2bd4  CryptSvc - ok
19:23:07.0070 0x2bd4  [ B4D1D62A09F09CB2DFD55628350CDAFB, 7DD3CE77D88B5AFAC4B6187F4CA6D50B7BD3398207163B2A1E4C76467801FF28 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:23:07.0109 0x2bd4  cvhsvc - ok
19:23:07.0169 0x2bd4  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
19:23:07.0228 0x2bd4  dbupdate - ok
19:23:07.0237 0x2bd4  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
19:23:07.0271 0x2bd4  dbupdatem - ok
19:23:07.0322 0x2bd4  dbx - ok
19:23:07.0365 0x2bd4  [ 62C2617E1927776851B108717166BBA4, 5ED905AD21D2BA4308561BDFD2868A15A1F2062DFE1D28689D4082700C85500A ] DbxSvc          C:\Windows\system32\DbxSvc.exe
19:23:07.0397 0x2bd4  DbxSvc - ok
19:23:07.0471 0x2bd4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:23:07.0545 0x2bd4  DcomLaunch - ok
19:23:07.0588 0x2bd4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:23:07.0645 0x2bd4  defragsvc - ok
19:23:07.0680 0x2bd4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:23:07.0730 0x2bd4  DfsC - ok
19:23:07.0761 0x2bd4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:23:07.0784 0x2bd4  Dhcp - ok
19:23:07.0895 0x2bd4  [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack       C:\Windows\system32\diagtrack.dll
19:23:07.0944 0x2bd4  DiagTrack - ok
19:23:08.0014 0x2bd4  [ BEFAFF2DB70CD9E10E27C32E9C43B279, D89B43EBCD05662327D5851BDF1A8CB4C6E5FA7C6BD1241C230F50057BD35189 ] DigitalWave.Update.Service C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
19:23:08.0059 0x2bd4  DigitalWave.Update.Service - ok
19:23:08.0086 0x2bd4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
19:23:08.0148 0x2bd4  discache - ok
19:23:08.0181 0x2bd4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
19:23:08.0196 0x2bd4  Disk - ok
19:23:08.0220 0x2bd4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:23:08.0243 0x2bd4  Dnscache - ok
19:23:08.0288 0x2bd4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:23:08.0335 0x2bd4  dot3svc - ok
19:23:08.0387 0x2bd4  [ 8CBE9EB5088E36DB88013D9D5858B87F, CCE31E3B6F9786E885C3EB8AC3F34406CD20E1D510683DABAEA202C88A3EBE3F ] DpHost          C:\Program Files\DigitalPersona\Bin\DpHostW.exe
19:23:08.0410 0x2bd4  DpHost - ok
19:23:08.0450 0x2bd4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
19:23:08.0506 0x2bd4  DPS - ok
19:23:08.0532 0x2bd4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:23:08.0548 0x2bd4  drmkaud - ok
19:23:08.0560 0x2bd4  [ A298AEA9FCA253E7EFF040A08C7C6376, 3A0B0C375D5C029ACF4BAF7881094D447E20E76C83049DBAD0F5FDB7802A7CDC ] DVMIO           C:\Windows\system32\DRIVERS\dvmio.sys
19:23:08.0574 0x2bd4  DVMIO - ok
19:23:08.0647 0x2bd4  [ 291A3DEE24999EE4618ED0C7A9A8DB7A, CD287E6913B20B20E6D4FC5036462AAD6A248DDF16028B4ECC9BDEFDB3A9FF1D ] DvmMDES         C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
19:23:08.0686 0x2bd4  DvmMDES - ok
19:23:08.0762 0x2bd4  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:23:08.0806 0x2bd4  DXGKrnl - ok
19:23:08.0841 0x2bd4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
19:23:08.0888 0x2bd4  EapHost - ok
19:23:09.0019 0x2bd4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
19:23:09.0135 0x2bd4  ebdrv - ok
19:23:09.0207 0x2bd4  [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] EFS             C:\Windows\System32\lsass.exe
19:23:09.0223 0x2bd4  EFS - ok
19:23:09.0300 0x2bd4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:23:09.0342 0x2bd4  ehRecvr - ok
19:23:09.0370 0x2bd4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
19:23:09.0395 0x2bd4  ehSched - ok
19:23:09.0438 0x2bd4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
19:23:09.0470 0x2bd4  elxstor - ok
19:23:09.0526 0x2bd4  [ B5581646636759D0DAFA8B008881C079, 0CADE029ABDCDE3A89C0786F1698C93D9A7CC981EFB3761CF243E19E178FF611 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
19:23:09.0537 0x2bd4  EPSON_EB_RPCV4_01 - detected UnsignedFile.Multi.Generic ( 1 )
19:23:09.0854 0x2bd4  Detect skipped due to KSN trusted
19:23:09.0854 0x2bd4  EPSON_EB_RPCV4_01 - ok
19:23:09.0884 0x2bd4  [ 1E345F2A2D95DA3190596E691CDE9342, 9D1D48F3B749ADA598D155E11E63CD52A4EEABF9BE92A1D997D25D07CF350084 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
19:23:09.0894 0x2bd4  EPSON_PM_RPCV4_01 - detected UnsignedFile.Multi.Generic ( 1 )
19:23:10.0219 0x2bd4  Detect skipped due to KSN trusted
19:23:10.0219 0x2bd4  EPSON_PM_RPCV4_01 - ok
19:23:10.0254 0x2bd4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:23:10.0267 0x2bd4  ErrDev - ok
19:23:10.0314 0x2bd4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
19:23:10.0377 0x2bd4  EventSystem - ok
19:23:10.0419 0x2bd4  [ 251AF86E0A4DDF3A6B181ED5103B06B1, 1823E7C87F0D8972A89D71B1FB633C5D43744F9803E6A8B866F6EA610032437C ] ewusbnet        C:\Windows\system32\DRIVERS\ewusbnet.sys
19:23:10.0438 0x2bd4  ewusbnet - ok
19:23:10.0463 0x2bd4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:23:10.0521 0x2bd4  exfat - ok
19:23:10.0534 0x2bd4  ezSharedSvc - ok
19:23:10.0555 0x2bd4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:23:10.0632 0x2bd4  fastfat - ok
19:23:10.0691 0x2bd4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
19:23:10.0735 0x2bd4  Fax - ok
19:23:10.0758 0x2bd4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:23:10.0774 0x2bd4  fdc - ok
19:23:10.0796 0x2bd4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
19:23:10.0844 0x2bd4  fdPHost - ok
19:23:10.0851 0x2bd4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:23:10.0912 0x2bd4  FDResPub - ok
19:23:10.0924 0x2bd4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:23:10.0944 0x2bd4  FileInfo - ok
19:23:10.0957 0x2bd4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:23:11.0026 0x2bd4  Filetrace - ok
19:23:11.0031 0x2bd4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:23:11.0052 0x2bd4  flpydisk - ok
19:23:11.0100 0x2bd4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:23:11.0123 0x2bd4  FltMgr - ok
19:23:11.0196 0x2bd4  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
19:23:11.0254 0x2bd4  FontCache - ok
19:23:11.0309 0x2bd4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:23:11.0329 0x2bd4  FontCache3.0.0.0 - ok
19:23:11.0352 0x2bd4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:23:11.0373 0x2bd4  FsDepends - ok
19:23:11.0401 0x2bd4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:23:11.0422 0x2bd4  Fs_Rec - ok
19:23:11.0470 0x2bd4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:23:11.0493 0x2bd4  fvevol - ok
19:23:11.0513 0x2bd4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
19:23:11.0535 0x2bd4  gagp30kx - ok
19:23:11.0598 0x2bd4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:23:11.0610 0x2bd4  GEARAspiWDM - ok
19:23:11.0686 0x2bd4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:23:11.0848 0x2bd4  gpsvc - ok
19:23:11.0969 0x2bd4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:23:12.0036 0x2bd4  gupdate - ok
19:23:12.0072 0x2bd4  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:23:12.0133 0x2bd4  gupdatem - ok
19:23:12.0201 0x2bd4  [ 4250E0978FBC9B3C0D115CD26C5BA9F4, 5674E267D9053BDF185A73C689CB125EE70AE14C7F2D0E37718379F425EBDC01 ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
19:23:12.0232 0x2bd4  gzflt - ok
19:23:12.0266 0x2bd4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:23:12.0293 0x2bd4  hcw85cir - ok
19:23:12.0357 0x2bd4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:23:12.0409 0x2bd4  HdAudAddService - ok
19:23:12.0443 0x2bd4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:23:12.0493 0x2bd4  HDAudBus - ok
19:23:12.0540 0x2bd4  [ 7F40163C7A7369A147761C9B57A1223E, 1BF89A4E405F24FB339151CCC2957D22683548B8064F08DC9CECB7580D0A173B ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
19:23:12.0565 0x2bd4  HECIx64 - ok
19:23:12.0588 0x2bd4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
19:23:12.0618 0x2bd4  HidBatt - ok
19:23:12.0635 0x2bd4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
19:23:12.0674 0x2bd4  HidBth - ok
19:23:12.0691 0x2bd4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
19:23:12.0730 0x2bd4  HidIr - ok
19:23:12.0757 0x2bd4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
19:23:12.0865 0x2bd4  hidserv - ok
19:23:12.0906 0x2bd4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
19:23:12.0936 0x2bd4  HidUsb - ok
19:23:12.0980 0x2bd4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:23:13.0070 0x2bd4  hkmsvc - ok
19:23:13.0125 0x2bd4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:23:13.0171 0x2bd4  HomeGroupListener - ok
19:23:13.0221 0x2bd4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:23:13.0268 0x2bd4  HomeGroupProvider - ok
19:23:13.0327 0x2bd4  [ A2DE0A67C77EBC6DFAD3D55232790ADD, 12374AD692CE8FA2462DA590D31BF847B61EBC3EFBC0690C1A746AFFA6C13C3A ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
19:23:13.0382 0x2bd4  HP Wireless Assistant Service - ok
19:23:13.0430 0x2bd4  [ CECF7CB10E778F921CF41858C653EA15, 73B04B071F4436C9D52008F450569C797D935212FAEA8BC510F77AB8BF639708 ] hpdoccardsvc    C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
19:23:13.0473 0x2bd4  hpdoccardsvc - ok
19:23:13.0500 0x2bd4  [ 4E0BEC0F78096FFD6D3314B497FC49D3, 15B545815D0C80102963FFF13B6643CC9A74717137C1CBA45345B18912E72DB6 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
19:23:13.0523 0x2bd4  hpdskflt - ok
19:23:13.0644 0x2bd4  [ 0E0E87820BB4431B176A00FB95B5503F, 91D35BEDEAEFA32F8B6A31318E70B954CFA1AFA74D02E3918FEF8135C82C57B3 ] hpqcaslwmiex    C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
19:23:13.0783 0x2bd4  hpqcaslwmiex - ok
19:23:13.0894 0x2bd4  [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
19:23:13.0997 0x2bd4  hpqwmiex - ok
19:23:14.0044 0x2bd4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:23:14.0077 0x2bd4  HpSAMD - ok
19:23:14.0119 0x2bd4  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278, E85A7BF1CFE52BA7D663A1ED48A4F8874EFBDDF48979138F7E3E24817705B6A1 ] hpsrv           C:\Windows\system32\Hpservice.exe
19:23:14.0149 0x2bd4  hpsrv - ok
19:23:14.0223 0x2bd4  [ 02F1253476B7F5F818364443DFED3264, 645F51A6781E9DEB381694718EDEF38B02F5345ADCE8860EC2D9483F7C1C7CC2 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
19:23:14.0277 0x2bd4  HPSupportSolutionsFrameworkService - ok
19:23:14.0359 0x2bd4  [ B6492D01712A22FF3FEA25A999DBD321, DA0BB9F4EC5352409F492378168C5A256186B1E76463C72ADE06C63F46363BEF ] HPWMISVC        C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
19:23:14.0370 0x2bd4  HPWMISVC - detected UnsignedFile.Multi.Generic ( 1 )
19:23:14.0722 0x2bd4  Detect skipped due to KSN trusted
19:23:14.0722 0x2bd4  HPWMISVC - ok
19:23:14.0814 0x2bd4  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:23:14.0879 0x2bd4  HTTP - ok
19:23:14.0965 0x2bd4  [ 4B5C07DB91A0099272FAAE732E1152BD, E0408F85A2E1E310F5143A01A34456F120875D21E0E9D0A9F9EBC96514CFC47C ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:23:14.0996 0x2bd4  hwdatacard - ok
19:23:15.0036 0x2bd4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:23:15.0069 0x2bd4  hwpolicy - ok
19:23:15.0130 0x2bd4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:23:15.0168 0x2bd4  i8042prt - ok
19:23:15.0220 0x2bd4  [ 1384872112E8E7FD5786ECEB8BDDF4C9, DC7844691740805A94F2901F8CB56F1591AF4F0F9C6D92D6B8595F89E6FA5F02 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
19:23:15.0269 0x2bd4  iaStor - ok
19:23:15.0321 0x2bd4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:23:15.0380 0x2bd4  iaStorV - ok
19:23:15.0470 0x2bd4  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:23:15.0562 0x2bd4  idsvc - ok
19:23:15.0612 0x2bd4  IEEtwCollectorService - ok
19:23:16.0262 0x2bd4  [ 1BE8D9CA4F2363B8E8015621878E0043, 695B5F88A6F6943156D033DAA86188F50308AD71FCF26CF0AEDF7E23F774FB56 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:23:16.0795 0x2bd4  igfx - ok
19:23:16.0842 0x2bd4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
19:23:16.0856 0x2bd4  iirsp - ok
19:23:16.0912 0x2bd4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
19:23:16.0948 0x2bd4  IKEEXT - ok
19:23:16.0996 0x2bd4  [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
19:23:17.0011 0x2bd4  Impcd - ok
19:23:17.0035 0x2bd4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:23:17.0050 0x2bd4  intelide - ok
19:23:17.0416 0x2bd4  [ 1BE8D9CA4F2363B8E8015621878E0043, 695B5F88A6F6943156D033DAA86188F50308AD71FCF26CF0AEDF7E23F774FB56 ] intelkmd        C:\Windows\system32\DRIVERS\igdpmd64.sys
19:23:17.0738 0x2bd4  intelkmd - ok
19:23:17.0780 0x2bd4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:23:17.0798 0x2bd4  intelppm - ok
19:23:17.0824 0x2bd4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:23:17.0876 0x2bd4  IPBusEnum - ok
19:23:17.0909 0x2bd4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:23:17.0952 0x2bd4  IpFilterDriver - ok
19:23:18.0000 0x2bd4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:23:18.0042 0x2bd4  iphlpsvc - ok
19:23:18.0078 0x2bd4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:23:18.0097 0x2bd4  IPMIDRV - ok
19:23:18.0127 0x2bd4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:23:18.0169 0x2bd4  IPNAT - ok
19:23:18.0241 0x2bd4  [ C37FAF1F0CE458D124A326FC8A7FF08D, 0147897CDF6DC2AB7113672D2B62CB258303FB0482B084C23C2E7EFCDE0065B4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:23:18.0276 0x2bd4  iPod Service - ok
19:23:18.0301 0x2bd4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:23:18.0323 0x2bd4  IRENUM - ok
19:23:18.0354 0x2bd4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:23:18.0372 0x2bd4  isapnp - ok
19:23:18.0397 0x2bd4  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:23:18.0428 0x2bd4  iScsiPrt - ok
19:23:18.0456 0x2bd4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
19:23:18.0470 0x2bd4  kbdclass - ok
19:23:18.0488 0x2bd4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:23:18.0504 0x2bd4  kbdhid - ok
19:23:18.0516 0x2bd4  [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] KeyIso          C:\Windows\system32\lsass.exe
19:23:18.0532 0x2bd4  KeyIso - ok
19:23:18.0564 0x2bd4  [ 3A8C03156C3E31E70EF84E48CA179B46, E25E43D53BB6EE1B5F34C95B4FAD111B37A36367B8D047B10FC614DEE13658E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:23:18.0585 0x2bd4  KSecDD - ok
19:23:18.0603 0x2bd4  [ C6330F7C2E92A00E6773E82F79078AFC, D8B851BF4FCE85F2A269F0B46BC7EC5A118FCFDACE8460E7B54C1A7CE306774A ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:23:18.0620 0x2bd4  KSecPkg - ok
19:23:18.0646 0x2bd4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:23:18.0695 0x2bd4  ksthunk - ok
19:23:18.0731 0x2bd4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:23:18.0781 0x2bd4  KtmRm - ok
19:23:18.0836 0x2bd4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:23:18.0882 0x2bd4  LanmanServer - ok
19:23:18.0909 0x2bd4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:23:18.0955 0x2bd4  LanmanWorkstation - ok
19:23:19.0005 0x2bd4  [ 3503F257B3203F824B1567238EBE17E2, A6F7B0D3C213DC17B266199FAC7F242529A1C030244A819BDBDB892BF2969FD3 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:23:19.0020 0x2bd4  LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
19:23:19.0347 0x2bd4  Detect skipped due to KSN trusted
19:23:19.0347 0x2bd4  LightScribeService - ok
19:23:19.0377 0x2bd4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:23:19.0417 0x2bd4  lltdio - ok
19:23:19.0435 0x2bd4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:23:19.0494 0x2bd4  lltdsvc - ok
19:23:19.0511 0x2bd4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:23:19.0552 0x2bd4  lmhosts - ok
19:23:19.0646 0x2bd4  [ 1DC4D529183A4275809A7646F2180A22, 218403A5EA4EACEEF6C701320345075978FA1C36C9B522BC34142E2D8A6D77CE ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:23:19.0699 0x2bd4  LMS - ok
19:23:19.0734 0x2bd4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
19:23:19.0753 0x2bd4  LSI_FC - ok
19:23:19.0768 0x2bd4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
19:23:19.0785 0x2bd4  LSI_SAS - ok
19:23:19.0811 0x2bd4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:23:19.0826 0x2bd4  LSI_SAS2 - ok
19:23:19.0844 0x2bd4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:23:19.0864 0x2bd4  LSI_SCSI - ok
19:23:19.0890 0x2bd4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:23:19.0946 0x2bd4  luafv - ok
19:23:19.0984 0x2bd4  MBAMSwissArmy - ok
19:23:20.0021 0x2bd4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:23:20.0039 0x2bd4  Mcx2Svc - ok
19:23:20.0058 0x2bd4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
19:23:20.0072 0x2bd4  megasas - ok
19:23:20.0109 0x2bd4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
19:23:20.0130 0x2bd4  MegaSR - ok
19:23:20.0144 0x2bd4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
19:23:20.0191 0x2bd4  MMCSS - ok
19:23:20.0210 0x2bd4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
19:23:20.0267 0x2bd4  Modem - ok
19:23:20.0282 0x2bd4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:23:20.0301 0x2bd4  monitor - ok
19:23:20.0329 0x2bd4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:23:20.0345 0x2bd4  mouclass - ok
19:23:20.0359 0x2bd4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:23:20.0376 0x2bd4  mouhid - ok
19:23:20.0413 0x2bd4  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:23:20.0428 0x2bd4  mountmgr - ok
19:23:20.0475 0x2bd4  [ 572BD5A99648652147A5D3C6DA946C99, FFDAD4A5682864977C926A5DDDB632CDB2A166BF025757801CC56F2828720023 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:23:20.0503 0x2bd4  MozillaMaintenance - ok
19:23:20.0541 0x2bd4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:23:20.0559 0x2bd4  mpio - ok
19:23:20.0582 0x2bd4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:23:20.0626 0x2bd4  mpsdrv - ok
19:23:20.0678 0x2bd4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:23:20.0744 0x2bd4  MpsSvc - ok
19:23:20.0781 0x2bd4  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:23:20.0801 0x2bd4  MRxDAV - ok
19:23:20.0843 0x2bd4  [ ACB6782973BD93760D597FC7BB37E692, 9B6EC2858D236DCE61FD5E0247F4D947A5DC484C9C0AABFDAF8270ABA392E787 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:23:20.0862 0x2bd4  mrxsmb - ok
19:23:20.0903 0x2bd4  [ 262BF7BB7D0E44CFAA9B12A1E0A6EDF1, CCC3A4CE929C7C8B07C1038BBE8425590CE14F5C37E1D5608978A3AD2F41519C ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:23:20.0926 0x2bd4  mrxsmb10 - ok
19:23:20.0965 0x2bd4  [ 8C0376974AA28398FF501E78C04ACB30, 81CE67BE933F67F760A72BF9B581F33BC151D98970765FE4425450A2EF450409 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:23:20.0986 0x2bd4  mrxsmb20 - ok
19:23:21.0008 0x2bd4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:23:21.0028 0x2bd4  msahci - ok
19:23:21.0051 0x2bd4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:23:21.0071 0x2bd4  msdsm - ok
19:23:21.0096 0x2bd4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
19:23:21.0118 0x2bd4  MSDTC - ok
19:23:21.0151 0x2bd4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:23:21.0200 0x2bd4  Msfs - ok
19:23:21.0210 0x2bd4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:23:21.0252 0x2bd4  mshidkmdf - ok
19:23:21.0292 0x2bd4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:23:21.0305 0x2bd4  msisadrv - ok
19:23:21.0341 0x2bd4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:23:21.0386 0x2bd4  MSiSCSI - ok
19:23:21.0390 0x2bd4  msiserver - ok
19:23:21.0414 0x2bd4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:23:21.0457 0x2bd4  MSKSSRV - ok
19:23:21.0469 0x2bd4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:23:21.0514 0x2bd4  MSPCLOCK - ok
19:23:21.0521 0x2bd4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:23:21.0569 0x2bd4  MSPQM - ok
19:23:21.0616 0x2bd4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:23:21.0640 0x2bd4  MsRPC - ok
19:23:21.0671 0x2bd4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:23:21.0691 0x2bd4  mssmbios - ok
19:23:21.0707 0x2bd4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:23:21.0783 0x2bd4  MSTEE - ok
19:23:21.0811 0x2bd4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
19:23:21.0834 0x2bd4  MTConfig - ok
19:23:21.0864 0x2bd4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
19:23:21.0889 0x2bd4  Mup - ok
19:23:21.0942 0x2bd4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
19:23:22.0030 0x2bd4  napagent - ok
19:23:22.0065 0x2bd4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:23:22.0121 0x2bd4  NativeWifiP - ok
19:23:22.0188 0x2bd4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:23:22.0288 0x2bd4  NDIS - ok
19:23:22.0326 0x2bd4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:23:22.0392 0x2bd4  NdisCap - ok
19:23:22.0416 0x2bd4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:23:22.0478 0x2bd4  NdisTapi - ok
19:23:22.0523 0x2bd4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:23:22.0584 0x2bd4  Ndisuio - ok
19:23:22.0630 0x2bd4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:23:22.0695 0x2bd4  NdisWan - ok
19:23:22.0736 0x2bd4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:23:22.0798 0x2bd4  NDProxy - ok
19:23:22.0827 0x2bd4  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
19:23:22.0850 0x2bd4  Netaapl - ok
19:23:22.0877 0x2bd4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:23:22.0948 0x2bd4  NetBIOS - ok
19:23:22.0991 0x2bd4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

smayate · 15.11.2016, 18:51

Code:

ATTFilter

19:23:23.0059 0x2bd4  NetBT - ok
19:23:23.0075 0x2bd4  [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] Netlogon        C:\Windows\system32\lsass.exe
19:23:23.0098 0x2bd4  Netlogon - ok
19:23:23.0142 0x2bd4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
19:23:23.0224 0x2bd4  Netman - ok
19:23:23.0273 0x2bd4  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:23:23.0328 0x2bd4  NetMsmqActivator - ok
19:23:23.0353 0x2bd4  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:23:23.0393 0x2bd4  NetPipeActivator - ok
19:23:23.0423 0x2bd4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
19:23:23.0530 0x2bd4  netprofm - ok
19:23:23.0611 0x2bd4  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:23:23.0645 0x2bd4  NetTcpActivator - ok
19:23:23.0655 0x2bd4  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:23:23.0697 0x2bd4  NetTcpPortSharing - ok
19:23:23.0971 0x2bd4  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
19:23:24.0252 0x2bd4  netw5v64 - ok
19:23:24.0299 0x2bd4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
19:23:24.0325 0x2bd4  nfrd960 - ok
19:23:24.0365 0x2bd4  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:23:24.0410 0x2bd4  NlaSvc - ok
19:23:24.0430 0x2bd4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:23:24.0499 0x2bd4  Npfs - ok
19:23:24.0524 0x2bd4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
19:23:24.0608 0x2bd4  nsi - ok
19:23:24.0620 0x2bd4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:23:24.0691 0x2bd4  nsiproxy - ok
19:23:24.0800 0x2bd4  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:23:24.0909 0x2bd4  Ntfs - ok
19:23:24.0995 0x2bd4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
19:23:25.0069 0x2bd4  Null - ok
19:23:25.0113 0x2bd4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:23:25.0147 0x2bd4  nvraid - ok
19:23:25.0177 0x2bd4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:23:25.0207 0x2bd4  nvstor - ok
19:23:25.0246 0x2bd4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:23:25.0270 0x2bd4  nv_agp - ok
19:23:25.0289 0x2bd4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:23:25.0312 0x2bd4  ohci1394 - ok
19:23:25.0372 0x2bd4  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:23:25.0409 0x2bd4  ose - ok
19:23:25.0699 0x2bd4  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:23:25.0941 0x2bd4  osppsvc - ok
19:23:26.0004 0x2bd4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:23:26.0038 0x2bd4  p2pimsvc - ok
19:23:26.0069 0x2bd4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
19:23:26.0111 0x2bd4  p2psvc - ok
19:23:26.0139 0x2bd4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:23:26.0172 0x2bd4  Parport - ok
19:23:26.0196 0x2bd4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:23:26.0222 0x2bd4  partmgr - ok
19:23:26.0265 0x2bd4  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:23:26.0299 0x2bd4  PcaSvc - ok
19:23:26.0326 0x2bd4  [ BC0018C2D29F655188A0ED3FA94FDB24, BCF7F2CA5E30F569AEB69049BA3C196982C72EA7264CFBA59D7123041BA96E5A ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
19:23:26.0350 0x2bd4  pccsmcfd - ok
19:23:26.0394 0x2bd4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
19:23:26.0420 0x2bd4  pci - ok
19:23:26.0439 0x2bd4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:23:26.0458 0x2bd4  pciide - ok
19:23:26.0492 0x2bd4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:23:26.0519 0x2bd4  pcmcia - ok
19:23:26.0552 0x2bd4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:23:26.0574 0x2bd4  pcw - ok
19:23:26.0620 0x2bd4  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:23:26.0661 0x2bd4  PEAUTH - ok
19:23:26.0726 0x2bd4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:23:26.0745 0x2bd4  PerfHost - ok
19:23:26.0825 0x2bd4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
19:23:26.0897 0x2bd4  pla - ok
19:23:26.0935 0x2bd4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:23:26.0961 0x2bd4  PlugPlay - ok
19:23:26.0980 0x2bd4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:23:26.0996 0x2bd4  PNRPAutoReg - ok
19:23:27.0017 0x2bd4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:23:27.0046 0x2bd4  PNRPsvc - ok
19:23:27.0076 0x2bd4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:23:27.0135 0x2bd4  PolicyAgent - ok
19:23:27.0164 0x2bd4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
19:23:27.0212 0x2bd4  Power - ok
19:23:27.0260 0x2bd4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:23:27.0300 0x2bd4  PptpMiniport - ok
19:23:27.0325 0x2bd4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
19:23:27.0341 0x2bd4  Processor - ok
19:23:27.0412 0x2bd4  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:23:27.0434 0x2bd4  ProfSvc - ok
19:23:27.0458 0x2bd4  [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:23:27.0477 0x2bd4  ProtectedStorage - ok
19:23:27.0522 0x2bd4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:23:27.0565 0x2bd4  Psched - ok
19:23:27.0618 0x2bd4  [ F2EECF8977BD3FE4E38743DDCFBECD20, 37AC3692C9159289C0675886930AA1999AE55196192F4EB22634D8DB46E4D9CC ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
19:23:27.0634 0x2bd4  PxHlpa64 - ok
19:23:27.0714 0x2bd4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
19:23:27.0768 0x2bd4  ql2300 - ok
19:23:27.0795 0x2bd4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
19:23:27.0815 0x2bd4  ql40xx - ok
19:23:27.0850 0x2bd4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
19:23:27.0879 0x2bd4  QWAVE - ok
19:23:27.0898 0x2bd4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:23:27.0919 0x2bd4  QWAVEdrv - ok
19:23:27.0933 0x2bd4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:23:27.0973 0x2bd4  RasAcd - ok
19:23:27.0997 0x2bd4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:23:28.0056 0x2bd4  RasAgileVpn - ok
19:23:28.0075 0x2bd4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
19:23:28.0131 0x2bd4  RasAuto - ok
19:23:28.0169 0x2bd4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:23:28.0219 0x2bd4  Rasl2tp - ok
19:23:28.0237 0x2bd4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
19:23:28.0294 0x2bd4  RasMan - ok
19:23:28.0309 0x2bd4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:23:28.0370 0x2bd4  RasPppoe - ok
19:23:28.0390 0x2bd4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:23:28.0442 0x2bd4  RasSstp - ok
19:23:28.0486 0x2bd4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:23:28.0533 0x2bd4  rdbss - ok
19:23:28.0547 0x2bd4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:23:28.0564 0x2bd4  rdpbus - ok
19:23:28.0576 0x2bd4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:23:28.0629 0x2bd4  RDPCDD - ok
19:23:28.0649 0x2bd4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:23:28.0702 0x2bd4  RDPENCDD - ok
19:23:28.0712 0x2bd4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:23:28.0762 0x2bd4  RDPREFMP - ok
19:23:28.0860 0x2bd4  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:23:28.0878 0x2bd4  RdpVideoMiniport - ok
19:23:28.0915 0x2bd4  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:23:28.0935 0x2bd4  RDPWD - ok
19:23:28.0988 0x2bd4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:23:29.0020 0x2bd4  rdyboost - ok
19:23:29.0045 0x2bd4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:23:29.0086 0x2bd4  RemoteAccess - ok
19:23:29.0111 0x2bd4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:23:29.0167 0x2bd4  RemoteRegistry - ok
19:23:29.0207 0x2bd4  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
19:23:29.0231 0x2bd4  RFCOMM - ok
19:23:29.0250 0x2bd4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:23:29.0296 0x2bd4  RpcEptMapper - ok
19:23:29.0319 0x2bd4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
19:23:29.0336 0x2bd4  RpcLocator - ok
19:23:29.0389 0x2bd4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
19:23:29.0445 0x2bd4  RpcSs - ok
19:23:29.0479 0x2bd4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:23:29.0521 0x2bd4  rspndr - ok
19:23:29.0561 0x2bd4  [ 907C4464381B5EBDFDC60F6C7D0DEDFC, A39EB4C0858A3CA2D8AFE6D52809EC41795FD7A2F3F157D9CBCCB84BE7958A89 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
19:23:29.0584 0x2bd4  RSUSBSTOR - ok
19:23:29.0607 0x2bd4  [ 777FC2C418465404E3D8A290DC247D24, D053ABB41B0F859762E4BE724EF4EB9F39B83215BC1C7C02B3BE8F02B2A4B094 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
19:23:29.0654 0x2bd4  RTL8167 - ok
19:23:29.0786 0x2bd4  [ E228C336F195FA629D00B02F9FFC5667, 114F562882EF2A439EC4783029A977A53588F3870AED158B46F8DA51B4CB2715 ] SafeBox         C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
19:23:29.0800 0x2bd4  SafeBox - ok
19:23:29.0817 0x2bd4  [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] SamSs           C:\Windows\system32\lsass.exe
19:23:29.0835 0x2bd4  SamSs - ok
19:23:29.0863 0x2bd4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:23:29.0881 0x2bd4  sbp2port - ok
19:23:29.0908 0x2bd4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:23:29.0958 0x2bd4  SCardSvr - ok
19:23:29.0991 0x2bd4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:23:30.0034 0x2bd4  scfilter - ok
19:23:30.0099 0x2bd4  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
19:23:30.0145 0x2bd4  Schedule - ok
19:23:30.0189 0x2bd4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:23:30.0232 0x2bd4  SCPolicySvc - ok
19:23:30.0273 0x2bd4  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
19:23:30.0302 0x2bd4  sdbus - ok
19:23:30.0345 0x2bd4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:23:30.0369 0x2bd4  SDRSVC - ok
19:23:30.0392 0x2bd4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:23:30.0409 0x2bd4  secdrv - ok
19:23:30.0443 0x2bd4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
19:23:30.0484 0x2bd4  seclogon - ok
19:23:30.0511 0x2bd4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
19:23:30.0558 0x2bd4  SENS - ok
19:23:30.0576 0x2bd4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:23:30.0592 0x2bd4  SensrSvc - ok
19:23:30.0611 0x2bd4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:23:30.0626 0x2bd4  Serenum - ok
19:23:30.0636 0x2bd4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:23:30.0655 0x2bd4  Serial - ok
19:23:30.0688 0x2bd4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
19:23:30.0705 0x2bd4  sermouse - ok
19:23:30.0772 0x2bd4  [ 12B41D84A4D058ADC60853C365DBFCCA, E53454E065F505DCF55D45AEFCC2F9EC45F2ED71BE64CC7F224E9736578B1AD4 ] ServiceLayer    C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe
19:23:30.0814 0x2bd4  ServiceLayer - detected UnsignedFile.Multi.Generic ( 1 )
19:23:31.0176 0x2bd4  Detect skipped due to KSN trusted
19:23:31.0177 0x2bd4  ServiceLayer - ok
19:23:31.0227 0x2bd4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
19:23:31.0270 0x2bd4  SessionEnv - ok
19:23:31.0308 0x2bd4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:23:31.0329 0x2bd4  sffdisk - ok
19:23:31.0338 0x2bd4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:23:31.0362 0x2bd4  sffp_mmc - ok
19:23:31.0366 0x2bd4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:23:31.0390 0x2bd4  sffp_sd - ok
19:23:31.0414 0x2bd4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:23:31.0431 0x2bd4  sfloppy - ok
19:23:31.0474 0x2bd4  [ 21AB491BBCC8C1B26FDC402A374AB196, DD973C9963C840200D153A15078152D499639730D065BB8122C6BE65D4372300 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
19:23:31.0509 0x2bd4  Sftfs - ok
19:23:31.0577 0x2bd4  [ 4E1BB8A9CCDB4BAF41F7F9A930EB121D, D994B20DACEB187BEB6530309E2185040B58105E4FD5AC1DA435712F9DE027D0 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:23:31.0623 0x2bd4  sftlist - ok
19:23:31.0645 0x2bd4  [ 3B8D43FEEFF7A187534DDDFD675FE123, 9308D5C552FE3AF1121A3F7B7595547C6B892FF500377953F3B623511D84698C ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
19:23:31.0667 0x2bd4  Sftplay - ok
19:23:31.0678 0x2bd4  [ F1D1B1DC7A8765A09D7640FBF8D20970, 72E59B04BC44DAFFB88987C16CF3F9DC35438B15879E102FD83013673E0DB66F ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
19:23:31.0694 0x2bd4  Sftredir - ok
19:23:31.0707 0x2bd4  [ B3B9ADE7F8C4AF0C20E712E040588543, 9A6BB11DA046BF6F0239952871263E148FAE91FB21065613645114B5FA054EC5 ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
19:23:31.0720 0x2bd4  Sftvol - ok
19:23:31.0737 0x2bd4  [ CECFDE5D3701B2D914862F5E6C3DFE18, E7627F90630C306324A39DC3C652B37D255F90636AC19D3302EE5B85BD504BD5 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:23:31.0777 0x2bd4  sftvsa - ok
19:23:31.0815 0x2bd4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:23:31.0867 0x2bd4  SharedAccess - ok
19:23:31.0911 0x2bd4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:23:31.0963 0x2bd4  ShellHWDetection - ok
19:23:31.0982 0x2bd4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:23:32.0000 0x2bd4  SiSRaid2 - ok
19:23:32.0022 0x2bd4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
19:23:32.0046 0x2bd4  SiSRaid4 - ok
19:23:32.0122 0x2bd4  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
19:23:32.0185 0x2bd4  SkypeUpdate - ok
19:23:32.0224 0x2bd4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:23:32.0293 0x2bd4  Smb - ok
19:23:32.0338 0x2bd4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:23:32.0361 0x2bd4  SNMPTRAP - ok
19:23:32.0381 0x2bd4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:23:32.0395 0x2bd4  spldr - ok
19:23:32.0437 0x2bd4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
19:23:32.0477 0x2bd4  Spooler - ok
19:23:32.0616 0x2bd4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
19:23:32.0763 0x2bd4  sppsvc - ok
19:23:32.0803 0x2bd4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:23:32.0851 0x2bd4  sppuinotify - ok
19:23:32.0897 0x2bd4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:23:32.0926 0x2bd4  srv - ok
19:23:32.0957 0x2bd4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:23:32.0986 0x2bd4  srv2 - ok
19:23:33.0024 0x2bd4  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
19:23:33.0052 0x2bd4  SrvHsfHDA - ok
19:23:33.0110 0x2bd4  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:23:33.0167 0x2bd4  SrvHsfV92 - ok
19:23:33.0214 0x2bd4  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:23:33.0249 0x2bd4  SrvHsfWinac - ok
19:23:33.0268 0x2bd4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:23:33.0290 0x2bd4  srvnet - ok
19:23:33.0324 0x2bd4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:23:33.0380 0x2bd4  SSDPSRV - ok
19:23:33.0391 0x2bd4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:23:33.0443 0x2bd4  SstpSvc - ok
19:23:33.0473 0x2bd4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
19:23:33.0490 0x2bd4  stexstor - ok
19:23:33.0569 0x2bd4  [ 674648106F972128B29D90EF6567629D, 5D0A6D089D812FD9BE0F81ED796DD46DFB840655D760A8055E70B80C897DC1F9 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
19:23:33.0612 0x2bd4  STHDA - ok
19:23:33.0669 0x2bd4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
19:23:33.0719 0x2bd4  stisvc - ok
19:23:33.0760 0x2bd4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:23:33.0779 0x2bd4  swenum - ok
19:23:33.0823 0x2bd4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
19:23:33.0903 0x2bd4  swprv - ok
19:23:33.0977 0x2bd4  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
19:23:34.0013 0x2bd4  SynTP - ok
19:23:34.0117 0x2bd4  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
19:23:34.0213 0x2bd4  SysMain - ok
19:23:34.0309 0x2bd4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:23:34.0350 0x2bd4  TabletInputService - ok
19:23:34.0383 0x2bd4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:23:34.0464 0x2bd4  TapiSrv - ok
19:23:34.0488 0x2bd4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
19:23:34.0558 0x2bd4  TBS - ok
19:23:34.0671 0x2bd4  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:23:34.0772 0x2bd4  Tcpip - ok
19:23:34.0857 0x2bd4  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:23:34.0975 0x2bd4  TCPIP6 - ok
19:23:35.0021 0x2bd4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:23:35.0042 0x2bd4  tcpipreg - ok
19:23:35.0076 0x2bd4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:23:35.0099 0x2bd4  TDPIPE - ok
19:23:35.0123 0x2bd4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:23:35.0143 0x2bd4  TDTCP - ok
19:23:35.0183 0x2bd4  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:23:35.0210 0x2bd4  tdx - ok
19:23:35.0242 0x2bd4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:23:35.0264 0x2bd4  TermDD - ok
19:23:35.0326 0x2bd4  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
19:23:35.0380 0x2bd4  TermService - ok
19:23:35.0406 0x2bd4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
19:23:35.0444 0x2bd4  Themes - ok
19:23:35.0471 0x2bd4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
19:23:35.0554 0x2bd4  THREADORDER - ok
19:23:35.0575 0x2bd4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
19:23:35.0661 0x2bd4  TrkWks - ok
19:23:35.0723 0x2bd4  [ 3E75A47D2DEFD2683DCA409572FBE8B2, 33964B1A05E045D3B878CDFD9F52A9086B4FA54D6D4D1DC38062D2874CACD4A0 ] trufos          C:\Windows\system32\DRIVERS\trufos.sys
19:23:35.0756 0x2bd4  trufos - ok
19:23:35.0818 0x2bd4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:23:35.0892 0x2bd4  TrustedInstaller - ok
19:23:35.0935 0x2bd4  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:23:35.0960 0x2bd4  tssecsrv - ok
19:23:36.0019 0x2bd4  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:23:36.0046 0x2bd4  TsUsbFlt - ok
19:23:36.0089 0x2bd4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:23:36.0186 0x2bd4  tunnel - ok
19:23:36.0201 0x2bd4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
19:23:36.0226 0x2bd4  uagp35 - ok
19:23:36.0275 0x2bd4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:23:36.0370 0x2bd4  udfs - ok
19:23:36.0405 0x2bd4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:23:36.0430 0x2bd4  UI0Detect - ok
19:23:36.0455 0x2bd4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:23:36.0484 0x2bd4  uliagpkx - ok
19:23:36.0534 0x2bd4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
19:23:36.0556 0x2bd4  umbus - ok
19:23:36.0579 0x2bd4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
19:23:36.0600 0x2bd4  UmPass - ok
19:23:36.0671 0x2bd4  [ C1C2C9231EBD263DB9C4F34DBB080B32, 25A046D8CC6674A47F3338E84661BF502D21C571C50643D9EF20D334CC27538C ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
19:23:36.0695 0x2bd4  UPDATESRV - ok
19:23:36.0716 0x2bd4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
19:23:36.0790 0x2bd4  upnphost - ok
19:23:36.0838 0x2bd4  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
19:23:36.0865 0x2bd4  USBAAPL64 - ok
19:23:36.0896 0x2bd4  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:23:36.0922 0x2bd4  usbccgp - ok
19:23:36.0960 0x2bd4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:23:36.0989 0x2bd4  usbcir - ok
19:23:37.0017 0x2bd4  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
19:23:37.0043 0x2bd4  usbehci - ok
19:23:37.0069 0x2bd4  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:23:37.0104 0x2bd4  usbhub - ok
19:23:37.0122 0x2bd4  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:23:37.0142 0x2bd4  usbohci - ok
19:23:37.0169 0x2bd4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:23:37.0197 0x2bd4  usbprint - ok
19:23:37.0213 0x2bd4  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:23:37.0233 0x2bd4  usbscan - ok
19:23:37.0258 0x2bd4  [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser          C:\Windows\system32\drivers\usbser.sys
19:23:37.0280 0x2bd4  usbser - ok
19:23:37.0303 0x2bd4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:23:37.0327 0x2bd4  USBSTOR - ok
19:23:37.0355 0x2bd4  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:23:37.0376 0x2bd4  usbuhci - ok
19:23:37.0410 0x2bd4  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:23:37.0443 0x2bd4  usbvideo - ok
19:23:37.0473 0x2bd4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
19:23:37.0552 0x2bd4  UxSms - ok
19:23:37.0584 0x2bd4  [ 5424EC756808C1002457033D969115C7, 85B86C3DF9BCF4BA085C4978BE36A38D0079CE24C5C61FB754286E476EB77741 ] VaultSvc        C:\Windows\system32\lsass.exe
19:23:37.0609 0x2bd4  VaultSvc - ok
19:23:37.0718 0x2bd4  [ 8159F83408230045F731C6C7799A7D44, 0800E3E467FF1F9337BBEB6B4ECB1567EFBE31FE0C2A08E1849F26A7A063724D ] vcsFPService    C:\Windows\system32\vcsFPService.exe
19:23:37.0826 0x2bd4  vcsFPService - ok
19:23:37.0835 0x2bd4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:23:37.0855 0x2bd4  vdrvroot - ok
19:23:37.0949 0x2bd4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
19:23:38.0036 0x2bd4  vds - ok
19:23:38.0067 0x2bd4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:23:38.0098 0x2bd4  vga - ok
19:23:38.0112 0x2bd4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:23:38.0185 0x2bd4  VgaSave - ok
19:23:38.0235 0x2bd4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:23:38.0262 0x2bd4  vhdmp - ok
19:23:38.0289 0x2bd4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:23:38.0308 0x2bd4  viaide - ok
19:23:38.0326 0x2bd4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:23:38.0347 0x2bd4  volmgr - ok
19:23:38.0399 0x2bd4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:23:38.0434 0x2bd4  volmgrx - ok
19:23:38.0461 0x2bd4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:23:38.0498 0x2bd4  volsnap - ok
19:23:38.0524 0x2bd4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
19:23:38.0544 0x2bd4  vsmraid - ok
19:23:38.0632 0x2bd4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
19:23:38.0738 0x2bd4  VSS - ok
19:23:38.0844 0x2bd4  [ 964C356C9AEEEE88B8B9B71D94042874, BE2BCA4923B5A246D40935D50827D0C233520BF2548B9DD98DE0310CFEC47EF1 ] VSSERV          C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
19:23:38.0901 0x2bd4  VSSERV - ok
19:23:38.0928 0x2bd4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:23:38.0947 0x2bd4  vwifibus - ok
19:23:38.0961 0x2bd4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:23:38.0988 0x2bd4  vwififlt - ok
19:23:39.0010 0x2bd4  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
19:23:39.0035 0x2bd4  vwifimp - ok
19:23:39.0068 0x2bd4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
19:23:39.0142 0x2bd4  W32Time - ok
19:23:39.0168 0x2bd4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
19:23:39.0189 0x2bd4  WacomPen - ok
19:23:39.0236 0x2bd4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:23:39.0295 0x2bd4  WANARP - ok
19:23:39.0301 0x2bd4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:23:39.0362 0x2bd4  Wanarpv6 - ok
19:23:39.0429 0x2bd4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:23:39.0478 0x2bd4  WatAdminSvc - ok
19:23:39.0566 0x2bd4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
19:23:39.0627 0x2bd4  wbengine - ok
19:23:39.0649 0x2bd4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:23:39.0683 0x2bd4  WbioSrvc - ok
19:23:39.0729 0x2bd4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:23:39.0771 0x2bd4  wcncsvc - ok
19:23:39.0781 0x2bd4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:23:39.0803 0x2bd4  WcsPlugInService - ok
19:23:39.0818 0x2bd4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
19:23:39.0837 0x2bd4  Wd - ok
19:23:39.0900 0x2bd4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:23:39.0949 0x2bd4  Wdf01000 - ok
19:23:39.0980 0x2bd4  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:23:39.0999 0x2bd4  WdiServiceHost - ok
19:23:40.0005 0x2bd4  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:23:40.0027 0x2bd4  WdiSystemHost - ok
19:23:40.0066 0x2bd4  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
19:23:40.0092 0x2bd4  WebClient - ok
19:23:40.0123 0x2bd4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:23:40.0182 0x2bd4  Wecsvc - ok
19:23:40.0195 0x2bd4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:23:40.0260 0x2bd4  wercplsupport - ok
19:23:40.0283 0x2bd4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:23:40.0339 0x2bd4  WerSvc - ok
19:23:40.0367 0x2bd4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:23:40.0424 0x2bd4  WfpLwf - ok
19:23:40.0438 0x2bd4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:23:40.0453 0x2bd4  WIMMount - ok
19:23:40.0465 0x2bd4  WinDefend - ok
19:23:40.0482 0x2bd4  WinHttpAutoProxySvc - ok
19:23:40.0531 0x2bd4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:23:40.0586 0x2bd4  Winmgmt - ok
19:23:40.0674 0x2bd4  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
19:23:40.0757 0x2bd4  WinRM - ok
19:23:40.0796 0x2bd4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB          C:\Windows\system32\DRIVERS\WinUsb.sys
19:23:40.0821 0x2bd4  WinUSB - ok
19:23:40.0883 0x2bd4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:23:40.0933 0x2bd4  Wlansvc - ok
19:23:40.0976 0x2bd4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:23:40.0992 0x2bd4  WmiAcpi - ok
19:23:41.0026 0x2bd4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:23:41.0050 0x2bd4  wmiApSrv - ok
19:23:41.0075 0x2bd4  WMPNetworkSvc - ok
19:23:41.0098 0x2bd4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:23:41.0118 0x2bd4  WPCSvc - ok
19:23:41.0152 0x2bd4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:23:41.0177 0x2bd4  WPDBusEnum - ok
19:23:41.0202 0x2bd4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:23:41.0248 0x2bd4  ws2ifsl - ok
19:23:41.0308 0x2bd4  [ ADD2FE1A9F4EE41A6D724819550D4E1F, EE8320496D611F6D264AC21684EACB5DC6F9DD82E055726073C7782D0993AFB3 ] WsAudio_Device  C:\Windows\system32\drivers\VirtualAudio.sys
19:23:41.0324 0x2bd4  WsAudio_Device - ok
19:23:41.0338 0x2bd4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
19:23:41.0373 0x2bd4  wscsvc - ok
19:23:41.0378 0x2bd4  WSearch - ok
19:23:41.0438 0x2bd4  [ F7ADA10CF0F02435B1C9E5C6FD0EC3A4, A46E1DB65A1060E1BDAF670723414A3F8F7B590D22A3EF2D1A356B9ACDE4BE4A ] wtsmpadap       C:\Windows\system32\DRIVERS\wtsmpadap.sys
19:23:41.0454 0x2bd4  wtsmpadap - ok
19:23:41.0495 0x2bd4  [ 4B604168F293A6AD8CE56B528E4DAD14, 454B21DA9FD0232725F085E515D2903FE41446DE0F96E492E385DEA52FEDCF12 ] WtSmpFlt        C:\Windows\system32\DRIVERS\wtsmpflt.sys
19:23:41.0518 0x2bd4  WtSmpFlt - ok
19:23:41.0659 0x2bd4  [ 291778E1A36716182AFBC1731B2DFEAB, C0B928CCCE8C496C90C42E0D294BAB51DC67C02B0D20CFB6A16B0AE1F51CC497 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:23:41.0794 0x2bd4  wuauserv - ok
19:23:41.0836 0x2bd4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:23:41.0854 0x2bd4  WudfPf - ok
19:23:41.0881 0x2bd4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:23:41.0903 0x2bd4  WUDFRd - ok
19:23:41.0934 0x2bd4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:23:41.0955 0x2bd4  wudfsvc - ok
19:23:42.0001 0x2bd4  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:23:42.0034 0x2bd4  WwanSvc - ok
19:23:42.0081 0x2bd4  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
19:23:42.0116 0x2bd4  yukonw7 - ok
19:23:42.0167 0x2bd4  ================ Scan global ===============================
19:23:42.0199 0x2bd4  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
19:23:42.0240 0x2bd4  [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll
19:23:42.0259 0x2bd4  [ 4AD1C61152A0199E3D7F9A82C07AC629, A4A42C7757EB084EE368A6BC4EBAB0C47BE41B0B4119A6AECD1B8E3332A7C5D5 ] C:\Windows\system32\winsrv.dll
19:23:42.0285 0x2bd4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:23:42.0326 0x2bd4  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
19:23:42.0337 0x2bd4  [ Global ] - ok
19:23:42.0337 0x2bd4  ================ Scan MBR ==================================
19:23:42.0348 0x2bd4  [ A54C1EE6E3B8AD02E8B1A970C7EB8208 ] \Device\Harddisk0\DR0
19:23:42.0707 0x2bd4  \Device\Harddisk0\DR0 - ok
19:23:42.0708 0x2bd4  ================ Scan VBR ==================================
19:23:42.0711 0x2bd4  [ EF8484125C1B572DDF562407099B7DFC ] \Device\Harddisk0\DR0\Partition1
19:23:42.0712 0x2bd4  \Device\Harddisk0\DR0\Partition1 - ok
19:23:42.0716 0x2bd4  [ 0C3F40B0BFDA8828BDF1405EF922ED88 ] \Device\Harddisk0\DR0\Partition2
19:23:42.0717 0x2bd4  \Device\Harddisk0\DR0\Partition2 - ok
19:23:42.0721 0x2bd4  [ 15347E7D4B2EAEBBE95087821E2D6DC4 ] \Device\Harddisk0\DR0\Partition3
19:23:42.0723 0x2bd4  \Device\Harddisk0\DR0\Partition3 - ok
19:23:42.0727 0x2bd4  [ 0723EB2AF9C27D3DA0B8C5F098C5062F ] \Device\Harddisk0\DR0\Partition4
19:23:42.0728 0x2bd4  \Device\Harddisk0\DR0\Partition4 - ok
19:23:42.0729 0x2bd4  ================ Scan generic autorun ======================
19:23:42.0729 0x2bd4  SynTPEnh - ok
19:23:42.0813 0x2bd4  [ B38841D728E1A2802EE1624E15C2DE4C, 51BB4F6F816D861DC58BEE774B048AF0F09FD4E5AD341BAD7D930A2FA2EBDEE4 ] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
19:23:42.0852 0x2bd4  HP Quick Launch - detected UnsignedFile.Multi.Generic ( 1 )
19:23:43.0168 0x2bd4  Detect skipped due to KSN trusted
19:23:43.0168 0x2bd4  HP Quick Launch - ok
19:23:43.0201 0x2bd4  [ 6198E06469703D4D225EE092C53DA779, AF49F6FB012BF0600FEDCD3AE961BD27120D21350328C7F640AACDAE0B6591F5 ] C:\Program Files\Hewlett-Packard\HPToneControl\HPTonectl.exe
19:23:43.0219 0x2bd4  HPToneControl - ok
19:23:43.0254 0x2bd4  [ A0ABBAD8CE99CBF8467D697073B38E87, C71F58580D93F0B78BDA735DA6201A6F1BDA36CC9F72D15B4E6DD62D6C3A43D0 ] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe
19:23:43.0269 0x2bd4  HPWirelessAssistant - detected UnsignedFile.Multi.Generic ( 1 )
19:23:43.0580 0x2bd4  Detect skipped due to KSN trusted
19:23:43.0580 0x2bd4  HPWirelessAssistant - ok
19:23:43.0621 0x2bd4  [ 5DF7E326D8640A5803399DFE5F500F59, D32F206660A9B1DC4F7B3138E494A9D8F20F98F7F148063615595AD2CE29F9AA ] C:\Windows\system32\igfxtray.exe
19:23:43.0647 0x2bd4  IgfxTray - ok
19:23:43.0687 0x2bd4  [ DA7098874BDE1EF2659B2E5164321F61, 280B0CEFA23D3595E2345D6B9504356FEA6ECA05190C7FE7B64C052A23376B0E ] C:\Windows\system32\hkcmd.exe
19:23:43.0725 0x2bd4  HotKeysCmds - ok
19:23:43.0767 0x2bd4  [ D8EA8066BC468584A790D4F99A46C8C5, F254BCB94C45754F05DE597B4E51F85D1B70D49652DEC4F88C481A8BBD7B8578 ] C:\Windows\system32\igfxpers.exe
19:23:43.0811 0x2bd4  Persistence - ok
19:23:43.0938 0x2bd4  [ 51C494FEE2AB2EAEF3EE7D9329098950, 9EF665FA7627462755D0B1BA5296AA89C972242784A05806AA0AEABC8E08BD4D ] C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
19:23:44.0072 0x2bd4  Bdagent - ok
19:23:44.0226 0x2bd4  [ EF5712B507FD449C062782A5CF39F4C3, 720FCB02E5B5344BCB54117135CB416E30A603BCB55A9C3173809AD502353B72 ] C:\Program Files\IDT\WDM\sttray64.exe
19:23:44.0361 0x2bd4  SysTrayApp - detected UnsignedFile.Multi.Generic ( 1 )
19:23:44.0678 0x2bd4  Detect skipped due to KSN trusted
19:23:44.0678 0x2bd4  SysTrayApp - ok
19:23:44.0766 0x2bd4  [ D91AB5CCE502F95726AC1E035C867BC6, A27B2AAB26C844454A0CEA97F861623C518A837B9DF41778AC7F4E9184E6BC8C ] C:\Program Files\iTunes\iTunesHelper.exe
19:23:44.0795 0x2bd4  iTunesHelper - ok
19:23:44.0823 0x2bd4  [ 89878DAA9C5B4DF0BCB92B7B3936C272, F03F7EA16637EAA464E85A6D61BCEBED0B8765100D935FA97A1474F860663B2F ] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
19:23:44.0864 0x2bd4  HP Envy Guides AutoPlay - ok
19:23:44.0894 0x2bd4  [ 30D7BB258A97BDA7C7E2EC63C23554AA, 83DFD5B0D0A2A53052F3E20809813B4D07185B12A734B5B5CD267CF04479EC36 ] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe
19:23:44.0927 0x2bd4  Easybits Recovery - detected UnsignedFile.Multi.Generic ( 1 )
19:23:45.0253 0x2bd4  Detect skipped due to KSN trusted
19:23:45.0253 0x2bd4  Easybits Recovery - ok
19:23:45.0348 0x2bd4  [ AF905BC023A0018F7325FD4B0019B5C0, 9F65DE0C3D8B90295B70528ADD2411CC1771AC089B70ABEC426D6F2D5D7A104A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:23:45.0382 0x2bd4  APSDaemon - ok
19:23:45.0446 0x2bd4  [ D86460DF75833FEC6C3328EF8D8926EC, 75476BCA04C7FE0BE8B73BFC52E3AF72887ED7822D6C5471AEE36621DA0F4CDD ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
19:23:45.0508 0x2bd4  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
19:23:45.0857 0x2bd4  Detect skipped due to KSN trusted
19:23:45.0857 0x2bd4  StartCCC - ok
19:23:45.0858 0x2bd4  Wondershare Helper Compact.exe - ok
19:23:45.0916 0x2bd4  Dropbox - ok
19:23:45.0978 0x2bd4  [ CD0362AEE36CFE1EF5DF973230742E67, 9F1D8AD4E09D16C39CD6A35CB298456468C1808226FFA8AD65BF9562A6ECC07D ] C:\Program Files (x86)\PDF24\pdf24.exe
19:23:46.0038 0x2bd4  PDFPrint - ok
19:23:46.0066 0x2bd4  DelaypluginInstall - ok
19:23:46.0227 0x2bd4  [ 9FE3848EB381F4F71E75B122D533C216, 7AA096CDDEDA8A10DD77222B2E7C742A1DC7C9595652EDE53836253EAB1ED546 ] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
19:23:46.0568 0x2bd4  Aimersoft Helper Compact.exe - detected UnsignedFile.Multi.Generic ( 1 )
19:23:46.0899 0x2bd4  Detect skipped due to KSN trusted
19:23:46.0899 0x2bd4  Aimersoft Helper Compact.exe - ok
19:23:47.0001 0x2bd4  [ 5245671B65D182489C11C5D216601628, FADF0A825052AF72AB881565FC32421AB7809CF73DD0FEDDD4716CDA1183BC66 ] C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
19:23:47.0053 0x2bd4  IMSS - ok
19:23:47.0121 0x2bd4  [ 5153C06FC9D4D094D1A785545928B134, 0037C935722663F9EF028F841DE222FC6418E9D60939AB60C965807E67A458DC ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:23:47.0216 0x2bd4  SunJavaUpdateSched - ok
19:23:47.0388 0x2bd4  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:23:47.0505 0x2bd4  Sidebar - ok
19:23:47.0533 0x2bd4  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:23:47.0585 0x2bd4  mctadmin - ok
19:23:47.0654 0x2bd4  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
19:23:47.0750 0x2bd4  Sidebar - ok
19:23:47.0782 0x2bd4  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
19:23:47.0821 0x2bd4  mctadmin - ok
19:23:47.0967 0x2bd4  [ BDF37B36AC60A7D97161A103B14CEE65, 38DEC2F59AC7C22AD5ADC48076C38A9AC92D3AE4F2EEFBBA408FFDC7A4E1E54A ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
19:23:48.0138 0x2bd4  LightScribe Control Panel - detected UnsignedFile.Multi.Generic ( 1 )
19:23:48.0458 0x2bd4  Detect skipped due to KSN trusted
19:23:48.0458 0x2bd4  LightScribe Control Panel - ok
19:23:48.0553 0x2bd4  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
19:23:48.0622 0x2bd4  Sidebar - ok
19:23:48.0674 0x2bd4  [ 91121D27CAD2674B8FDB248D83EDFF19, 2C4E24AD1C868D80FBA7B07DC562FF8F4C627AFA1B4181E2F851FA09B8A7753A ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
19:23:48.0701 0x2bd4  iCloudServices - ok
19:23:48.0817 0x2bd4  [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\OneDrive.exe
19:23:48.0871 0x2bd4  OneDrive - ok
19:23:48.0918 0x2bd4  [ 53A6B1ED8BE0F7208FB72EF2580F71EC, 18799E69603DC0F67D56FA7A748FECFEDFD1CFFB8A12DC2B7E75035724B09303 ] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
19:23:48.0955 0x2bd4  Bitdefender-Geldbörse-Agent - ok
19:23:48.0989 0x2bd4  [ 0705790B008B80230F933F8B0877FB2E, 1B3650F91C96FD4154745291313A6B234959E05B59D199C079F9C521CB622A5D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
19:23:49.0021 0x2bd4  iCloudDrive - ok
19:23:49.0066 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0133 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.2015.0811\amd64 - ok
19:23:49.0147 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0216 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64 - ok
19:23:49.0231 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0283 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64 - ok
19:23:49.0298 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0373 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\amd64 - ok
19:23:49.0391 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0443 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1165.0612\amd64 - ok
19:23:49.0459 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0520 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1166.0618\amd64 - ok
19:23:49.0535 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0587 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\SkyDrive\17.3.1171.0714\amd64 - ok
19:23:49.0603 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0667 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.4724.0224\amd64 - ok
19:23:49.0683 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0745 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64 - ok
19:23:49.0761 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0826 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64 - ok
19:23:49.0841 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0904 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64 - ok
19:23:49.0919 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:49.0977 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5907.0716\amd64 - ok
19:23:49.0997 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0064 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64 - ok
19:23:50.0079 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0142 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.5951.0827\amd64 - ok
19:23:50.0158 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0221 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64 - ok
19:23:50.0240 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0294 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\amd64 - ok
19:23:50.0310 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0370 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64 - ok
19:23:50.0387 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0451 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64 - ok
19:23:50.0466 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0534 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64 - ok
19:23:50.0550 0x2bd4  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
19:23:50.0617 0x2bd4  Uninstall C:\Users\Patricia\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64 - ok
19:23:50.0728 0x2bd4  [ 8759845095580093F74CF788EA6D2C86, 0E1A90B0C97EFCA14030EA29558868B1EF077897E321FD077A37DB60CABEEFB7 ] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
19:23:50.0820 0x2bd4  HPAdvisorDock - ok
19:23:50.0911 0x2bd4  [ BDF37B36AC60A7D97161A103B14CEE65, 38DEC2F59AC7C22AD5ADC48076C38A9AC92D3AE4F2EEFBBA408FFDC7A4E1E54A ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
19:23:50.0998 0x2bd4  LightScribe Control Panel - detected UnsignedFile.Multi.Generic ( 1 )
19:23:50.0998 0x2bd4  Detect skipped due to KSN trusted
19:23:50.0998 0x2bd4  LightScribe Control Panel - ok
19:23:51.0039 0x2bd4  [ 53A6B1ED8BE0F7208FB72EF2580F71EC, 18799E69603DC0F67D56FA7A748FECFEDFD1CFFB8A12DC2B7E75035724B09303 ] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
19:23:51.0079 0x2bd4  Bitdefender-Geldbörse-Agent - ok
19:23:51.0081 0x2bd4  Waiting for KSN requests completion. In queue: 167
19:23:52.0114 0x2bd4  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender 2015\wscfix.exe ( 18.18.0.1254 ), 0x41000 ( enabled : updated )
19:23:52.0117 0x2bd4  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender 2015\wscfix.exe ( 18.18.0.1254 ), 0x41010 ( enabled )
19:23:52.0290 0x2bd4  ============================================================
19:23:52.0290 0x2bd4  Scan finished
19:23:52.0290 0x2bd4  ============================================================
19:23:52.0301 0x1774  Detected object count: 0
19:23:52.0301 0x1774  Actual detected object count: 0

deeprybka · 16.11.2016, 15:49

Hallo Patricia,
die USB-Sticks können wir am Ende noch untersuchen. Den PC kannst Du nach Erledigung der Anweisungen täglich ausschalten.

Schritt 1

Downloade Dir bitte

AdwCleaner auf Deinen Desktop.

Schließe alle offenen Programme und Browser.
Starte die adwcleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Werkzeuge > Optionen und vergewissere Dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel
- "Prefetch" Dateien
- Proxy
- Winsock
- Internet Explorer Richtlinien
- Chrome Richtlinien
Bestätige die Auswahl mit Ok.
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen (auch dann wenn AdwCleaner sagt, dass nichts gefunden wurde) und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit Deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2

Download und Anleitung
Starte Malwarebytes' Anti-Malware (MBAM).
Unter Einstellungen/ Erkennung und Schutz setze bitte einen Haken bei "Suche nach Rootkits".
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass Deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Jetzt bitte Suchscan durchführen:

Schritt 3
Alle "benutzten" Sticks an den PC anstecken und einen ESET-Scan durchführen.
Wichtig: Bitte unter "Computer-Prüfeinstellungen/...zu prüfende Objekte" die checkbox bei Computer setzen.

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

smayate · 16.11.2016, 17:41

Hallo Jürgen

Schritt 1 ok: die dazugehörige Textdatei, siehe weiter unten in diesem post.

Schritt 2: Da ich echt nichts falsch machen möchte, folgende Frage: MBAM-Setup-assistant sagt: "sie sollten alle anderen Anwendungen schliessen, und ihre Antiviren und Firewall software temporär deaktivieren, bevor sie mit dem setup fortfahren"
Da Du das mit Antivirenprogramm und Firewall deaktivieren nicht speziell erwähnt hast, und ich in der Anleitung auch nichts dazu gefunden habe, bin ich jetzt unsicher, ob ich deaktivieren muss oder nicht.
Vielen Dank für eine Anwort.
Liebe Grüsse
Patricia

Schritt 1 adwcleaner:

Code:

ATTFilter

# AdwCleaner v6.030 - Bericht erstellt am 16/11/2016 um 17:08:52
# Aktualisiert am 19/10/2016 von Malwarebytes
# Datenbank : 2016-11-15.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : Patricia - HOMEPC
# Gestartet von : C:\Users\Patricia\Desktop\AdwCleaner_6.030.exe
# Modus: Löschen
# Unterstützung : hxxps://www.malwarebytes.com/support



***** [ Dienste ] *****



***** [ Ordner ] *****

[-] Ordner gelöscht: C:\Users\Patricia\AppData\Roaming\download Manager
[-] Ordner gelöscht: C:\ProgramData\ICQ\ICQNewTab
[#] Ordner mit Neustart gelöscht: C:\ProgramData\Application Data\ICQ\ICQNewTab
[-] Ordner gelöscht: C:\Program Files (x86)\foxtabvideoconverter


***** [ Dateien ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Verknüpfungen ] *****



***** [ Aufgabenplanung ] *****



***** [ Registrierungsdatenbank ] *****

[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{9C81D00A-3DAA-48AB-90C7-8252119ABB93}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\AppID\{1DA17428-323D-48FF-857C-98CFEE48BFD5}
[-] Schlüssel gelöscht: HKCU\Software\Classes\CLSID\{BEBBC426-4F16-4567-8FE1-BE198C982027}
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Schlüssel gelöscht: HKU\.DEFAULT\Software\VNT
[-] Schlüssel gelöscht: HKU\S-1-5-21-1886241858-427757544-3799178666-1000\Software\PRODUCTSETUP
[-] Schlüssel gelöscht: HKU\S-1-5-21-1886241858-427757544-3799178666-1000\Software\csastats
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1886241858-427757544-3799178666-1000\Software\BabylonToolbar
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1886241858-427757544-3799178666-1000\Software\ICQ\ICQToolbar
[-] Schlüssel gelöscht: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1886241858-427757544-3799178666-1000\Software\SweetIM
[#] Schlüssel mit Neustart gelöscht: HKU\S-1-5-18\Software\VNT
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\PRODUCTSETUP
[#] Schlüssel mit Neustart gelöscht: HKCU\Software\csastats
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Mail.Ru
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1886241858-427757544-3799178666-1000\Software\BabylonToolbar
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1886241858-427757544-3799178666-1000\Software\ICQ\ICQToolbar
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1886241858-427757544-3799178666-1000\Software\SweetIM
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\PRODUCTSETUP
[#] Schlüssel mit Neustart gelöscht: [x64] HKCU\Software\csastats
[-] Schlüssel gelöscht: [x64] HKLM\SOFTWARE\SmartPCFixer
[-] Schlüssel gelöscht: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[#] Schlüssel mit Neustart gelöscht: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[-] Wert gelöscht: HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]


***** [ Browser ] *****

[-] Firefox Einstellungen bereinigt: "extensions.aniweather.timeShifted" -  565550


*************************

:: "Tracing" Schlüssel gelöscht
:: Winsock Einstellungen zurückgesetzt
:: "Prefetch" Dateien gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [3881 Bytes] - [16/11/2016 17:08:52]
C:\AdwCleaner\AdwCleaner[S0].txt - [3932 Bytes] - [16/11/2016 17:07:49]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [4027 Bytes] ##########

deeprybka · 16.11.2016, 17:43

Wußte ich nicht, dass das beim Setup kommt. Wenn Du weißt wie man es deaktiviert, dann mach es bitte vorübergehend.

smayate · 18.11.2016, 21:21

Hallo Jürgen,

Ich melde mich hier mit meinem ipad, weil mein laptop nun hängt.
Schritt 2 ok.
Bei Schritt 3 habe ich folgendes Problem:
Es lief alles gut bis und mit ESET fertigstellen und ESET-Fenster schliessen. (Der Durchlauf dauerte ca 2,5 Std, keine Funde)
Log habe ich gefunden, genau dort wie beschrieben. Ich klickte um log zu öffen, es passierte aber nichts, drehte und drehte.....
Nach einigen Minuten, wollte ich Dir via laptop das Problem schildern, aber waterfox hing genauso. Dann kam ich auf die Idee (war vermutlich blöd, sorry!) den laptop neu zu starten. Beim herunterfahren hängt er nun auf der blauen windowsseite mit Meldung "Abmeldung..." und hängt hier.

Und jetzt?
Vielen Dank für die nächste Anweisung!
Ein schönes WE und liebe Grüsse
Patricia

deeprybka · 19.11.2016, 16:58

Wie sieht es denn aktuell aus?

smayate · 19.11.2016, 20:36

Hallo Jürgen,

Ich melde mich auch jetzt mit ipad. Vermutlich habe ich mich nicht genug deutlich ausgedrückt im letzten post, bitte entschuldige!

Da ich nicht weiter wusste und den laptop ja nicht herunterfahren konnte, habe ich gestern Abend einfach den Deckel zugemacht. Seither habe ich nichts gemacht, ausser gerade eben, den Deckel wieder auf. Sehe das selbe Bild: blauer windows Bildschirm mit Meldung "Abmeldung..." und es dreht und dreht.....

Was muss ich jetzt tun? "Abwürgen", also einfach den Einschaltknopf lange drücken bis er ganz abstellt? Und dann neu starten?
Oder gibt es einen anderen besseren Weg? (Da war doch mal was mit Contr Alt Delete...? Aber vielleicht ist das ja auch "Schnee von vorgestern")

Edit:
-Ich hatte Bitdefender während mbam vorübergehend ausgeschaltet. Also einfach alle Häcklein rausgenommen. Eine Funktion zum deaktivieren scheint es nicht zu geben. Nach mbam und vor ESET habe ich bitdefender wieder eingeschalter. War das der Fehler?
-Was machte ich mit bitdefender während des folgenden Reinigungsprozesses?
-Auch Hatte ich bemerkt, (also noch vor mbam Durchlauf) dass windows firewall auch drin war, und bitdefender hat ja auch eine firewall. "Seufz", war wohl auch blöd.

Vielen Dank für eine Antwort und deine Geduld!
Lg, Patricia

deeprybka · 19.11.2016, 20:42

Versuch den abzuschalten. Egal wie. Und beim Start wähle Windows normal starten falls da Optionen angeboten werden.

19.11.2016, 16:58	#13
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Windows 7, 64bit, macht keine updates mehr. laptop läuft verlangsamt. Wie sieht es denn aktuell aus? __________________ Gruß deeprybka Lob, Kritik, Wünsche? Spende fürs trojaner-board? _______________________________________________ „Neminem laede, immo omnes, quantum potes, iuva.“ Arthur Schopenhauer

Windows 7, 64bit, macht keine updates mehr. laptop läuft verlangsamt.

Plagegeister aller Art und deren Bekämpfung: Windows 7, 64bit, macht keine updates mehr. laptop läuft verlangsamt.